Severity
High
Analysis Summary
CVE-2025-30422 CVSS:9.8
Apple AirPlay audio SDK, AirPlay video SDK and CarPlay Communication Plug-in are vulnerable to a buffer overflow, caused by improper bounds checking by the AirPlay protocol. By using Wi-fi, an attacker could exploit this vulnerability to execute arbitrary code on the system.
CVE-2025-24252 CVSS:9.8
Apple macOS Sequoia, tvOS, macOS Ventura, iPadOS, macOS Sonoma, iOS, iPadOS and visionOS could allow a remote attacker to execute arbitrary code on the system, caused by a use-after-free issue in the AirPlay protocol. By using Wi-fi, an attacker could exploit this vulnerability to execute arbitrary code on the system.
CVE-2025-24206 CVSS:7.7
Apple macOS Sequoia, tvOS, macOS Ventura, iPadOS, macOS Sonoma, iOS, iPadOS and visionOS could allow a remote attacker to bypass security restrictions, caused by an authentication issue in the AirPlay component. A local attacker could exploit this vulnerability to bypass authentication policy.
Impact
- Buffer Overflow
- Code Execution
- Security Bypass
Indicators of Compromise
CVE
CVE-2025-30422
CVE-2025-24252
CVE-2025-24206
Affected Vendors
- Apple
Affected Products
- Apple iPadOS - 18.3.0
- Apple iOS - 18.3.0
- Apple macOS Sonoma - 14.7.4
- Apple tvOS - 18.3
- Apple AirPlay audio SDK
- Apple AirPlay video SDK
- Apple CarPlay Communication Plug-in
- Apple iPadOS - 17.7.5
- Apple macOS Sequoia - 15.3
- Apple visionOS - 2.3.0
- Apple macOS Ventura - 13.7.4
Remediation
Refer to Apple's security Advisory for patch, upgrade, or suggested workaround information.