What is CVE-2025-24143?

A medium-severity vulnerability in Apple products could allow attackers to fingerprint users through maliciously crafted webpages. Patching is essential to mitigate this risk.

What is the severity of CVE-2025-24143?

CVE-2025-24143 has a severity rating of MEDIUM with a CVSS base score of 6.5.

CVE-2025-24143 | Medium Vulnerability in Apple Safari, iOS, iPadOS, macOS, and visionOS

CVE-2025-24143 is a medium-severity vulnerability impacting multiple Apple products including Safari, iOS, iPadOS, macOS, and visionOS. This vulnerability allows a maliciously crafted webpage to potentially fingerprint users, posing significant privacy concerns. The issue has been addressed with improved access restrictions to the file system in the latest versions of these products.

The CVSS score assigned to this vulnerability is 6.5, indicating a medium level of risk. The attack vector is network-based, requiring low complexity, and does not require any privileges. However, user interaction is necessary, which means that users must visit the malicious page for the attack to be effective. Risk to organizations includes potential unauthorized access to user data and privacy violations.

Organizations should prioritize patching immediately to mitigate the risk associated with this vulnerability. The affected versions are Safari 18.3, iOS 18.3, iPadOS 18.3, macOS Sequoia 15.3, and visionOS 2.3. Timely updates are critical to maintaining the security posture of your environment.

As of now, there are no known public exploits or proofs of concept available for this vulnerability, but organizations should remain vigilant and apply the necessary updates to protect against potential future exploitation.

Vulnerability Details

The issue was addressed with improved access restrictions to the file system. This issue is fixed in Safari 18.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, visionOS 2.3. A maliciously crafted webpage may be able to fingerprint the user.

The vulnerability type is classified under CWE-862. The CVSS score is 6.5, indicating a medium severity level. The affected products include Safari, iOS, iPadOS, macOS, and visionOS.

Technical Analysis

The root cause of this vulnerability lies in insufficient access restrictions to the file system, allowing a malicious actor to exploit the vulnerability through a crafted webpage. The attack vector is network-based, requiring users to interact with the malicious page. The attack complexity is low, and no privileges are required. User interaction is necessary, which increases the likelihood of exploitation. The confidentiality impact is high, as the attack could allow for user fingerprinting, while integrity and availability impacts are none.

Risk & Impact Analysis

Organizations running affected versions of Apple's products face risks related to user privacy and data security. The potential for user fingerprinting can lead to unauthorized surveillance and data collection by malicious actors. Given the medium severity of this vulnerability and the fact that user interaction is required, organizations should assess the risk based on their specific environments. Organizations should address in priority patch cycle to ensure enhanced security for their users.

Exploitation Status

Signal	Status
Known Exploit	No
Public PoC	No
Actively Exploited	No
Ransomware Use	No

Affected Versions

The affected versions include Safari 18.3, iOS 18.3, iPadOS 18.3, macOS Sequoia 15.3, and visionOS 2.3. Organizations should ensure they update to these versions to mitigate the identified risks.

Mitigation & Remediation

Organizations should prioritize updating to the latest versions of the affected Apple products, specifically Safari 18.3, iOS 18.3, iPadOS 18.3, macOS Sequoia 15.3, and visionOS 2.3. If immediate patching is not feasible, organizations may implement configuration hardening by limiting user access to sensitive resources and monitoring user interactions with web applications.

Detection Guidance

To detect potential exploitation, organizations should monitor logs for unusual access patterns, particularly from web applications. Behavioral anomalies such as unexpected user interactions with webpages should also be analyzed for signs of exploitation.

AppSecure Threat Intelligence Insight

The long-term significance of CVE-2025-24143 highlights ongoing vulnerabilities within widely-used software, reinforcing the need for continuous security assessments. Security teams should leverage this incident to strengthen their overall security posture. Additionally, organizations can benefit from reviewing their vulnerability management processes to ensure they are prepared for similar threats in the future.

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

CVE ID	Title	Severity	Vulnerability Type	Published
CVE-2025-65418	CVE-2025-65418: High Vulnerability in docuFORM Managed Print Service Client	HIGH	Path Traversal	May 11, 2026
CVE-2025-65417	CVE-2025-65417: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	XSS	May 11, 2026
CVE-2025-65416	CVE-2025-65416: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Unrestricted File Upload	May 11, 2026
CVE-2025-65415	CVE-2025-65415: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Session Fixation	May 11, 2026
CVE-2025-61314	CVE-2025-61314: High Vulnerability in GmbH Mecury Managed Print Services	HIGH	XSS	May 11, 2026

CVE-2025-24143: Medium Vulnerability in Apple Safari, iOS, iPadOS, macOS, and visionOS