CVE-2025-24137

HIGH Year: 2025
CVSS v3 Score
8.0
High
Weakness Type
CWE-843
View all →

Vulnerability Description

A type confusion issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4, macOS Sonoma 14.7.3, visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. A remote attacker may cause an unexpected application termination or arbitrary code execution.

Related Vulnerabilities

CVE-2017-0037

HIGH
CVSS:8.1(High)

Microsoft Internet Explorer 10 and 11 and Microsoft Edge have a type confusion issue in the Layout::MultiColumnBoxBuilder::HandleColumnBreakOnColumnSpanningElement function in mshtml.dll, which allows...

CWE-8432017

CVE-2020-36460

HIGH
CVSS:8.1(High)

An issue was discovered in the model crate through 2020-11-10 for Rust. The Shared data structure has an implementation of the Send and Sync traits without regard for the inner type.

CWE-8432020

CVE-2023-35297

HIGH
CVSS:8.1(High)

Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability

CWE-8432023

CVE-2023-4068

HIGH
CVSS:8.1(High)

Type Confusion in V8 in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High)

CWE-8432023

CVE-2023-4070

HIGH
CVSS:8.1(High)

Type Confusion in V8 in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High)

CWE-8432023

CVE-2024-21357

HIGH
CVSS:8.1(High)

Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability

CWE-8432024