AI description
CVE-2025-46285 involves an integer overflow that was addressed by adopting 64-bit timestamps. The vulnerability is fixed in multiple Apple operating systems, including macOS Sonoma 14.8.3, macOS Sequoia 15.7.3, watchOS 26.2, iOS 18.7.3, iPadOS 18.7.3, iOS 26.2, iPadOS 26.2, macOS Tahoe 26.2, visionOS 26.2, and tvOS 26.2. Successful exploitation of this vulnerability could allow an application to gain root privileges on the affected system.
- Description
- An integer overflow was addressed by adopting 64-bit timestamps. This issue is fixed in watchOS 26.2, macOS Sonoma 14.8.3, iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, macOS Sequoia 15.7.3, visionOS 26.2, tvOS 26.2. An app may be able to gain root privileges.
- Source
- product-security@apple.com
- NVD status
- Modified
- Products
- macos
CVSS 3.1
- Type
- Secondary
- Base score
- 7.8
- Impact score
- 5.9
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-190
- Hype score
- Not currently trending
iOS 26.1 has a candidate for root exploit: CVE-2025-46285 can't provide kernel debugging or jailbreak, but may be useful as a stepping stone to bootstrap visibility into iOS internals, and find a bug that can. https://t.co/LYGArGBBc0
@hermes_tool1
3 Feb 2026
12172 Impressions
19 Retweets
134 Likes
39 Bookmarks
2 Replies
1 Quote
iOS 26.1 has a candidate for root exploit: CVE-2025-46285 can't provide kernel debugging or jailbreak, but may be useful as a stepping stone to bootstrap visibility into iOS internals, and find a bug that can. https://t.co/geMCM4bTRi
@minacrissDev_
12 Jan 2026
7797 Impressions
8 Retweets
94 Likes
20 Bookmarks
1 Reply
1 Quote
iOS 26.2 - 18.0 JAILBREAK News: New KERNEL ROOT & WebKit (Safari) Vulnerability Discovered! All Devices š NEW VIDEO: https://t.co/QdFqB2JRO1 We're discussing the security content of iOS 26.2 which patches several important vulnerabilities including CVE-2025-46285, a kern
@FCE365
3 Jan 2026
25202 Impressions
18 Retweets
156 Likes
57 Bookmarks
10 Replies
1 Quote
iOS 26.1 has a candidate for root exploit: CVE-2025-46285 can't provide kernel debugging or jailbreak, but may be useful as a stepping stone to bootstrap visibility into iOS internals, and find a bug that can. https://t.co/9aN2p373Bf
@minacrissDev_
29 Dec 2025
5951 Impressions
8 Retweets
67 Likes
15 Bookmarks
0 Replies
1 Quote
iOS 26.1 has a candidate for root exploit: CVE-2025-46285 can't provide kernel debugging or jailbreak, but may be useful as a stepping stone to bootstrap visibility into iOS internals, and find a bug that can. https://t.co/UvG9m2Ow45
@zerodaytraining
29 Dec 2025
23933 Impressions
39 Retweets
319 Likes
91 Bookmarks
1 Reply
3 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8E37DC2A-33E6-480B-8DFE-4F6558F0A895",
"versionEndExcluding": "14.8.3"
},
{
"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3428C860-E02D-4FE9-96F4-58EEAAB8321D",
"versionEndExcluding": "15.7.3",
"versionStartIncluding": "15.0"
}
],
"operator": "OR"
}
]
}
]