Vulnerability Media Exposure
These listed vulnerabilities have been referenced across multiple public sources, indicating high media attention and potential significance.
CVE-2025-24085
SeverityHIGHA use after free issue was addressed with improved memory management. This issue is fixed in visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. A malicious application may be able to elevate privileges. Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 17.2.
apple:ipadosapple:iphone_osapple:macosapple:tvosapple:visionosapple:watchosCVE-2025-21415
SeverityCRITICALAuthentication bypass by spoofing in Azure AI Face Service allows an authorized attacker to elevate privileges over a network.
microsoft:azure_ai_face_serviceCVE-2025-0282
SeverityCRITICALA stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.5, Ivanti Policy Secure before version 22.7R1.2, and Ivanti Neurons for ZTA gateways before version 22.7R2.3 allows a remote unauthenticated attacker to achieve remote code execution.
ivanti:connect_secureivanti:neurons_for_zero-trust_accessivanti:policy_secure