July 23, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Palo Alto GlobalProtect Bug Opens Door to Malicious Code Execution
May 21, 2025
Defending Against APTs: Real-World Applications of MDR Services
May 21, 2025Palo Alto GlobalProtect Bug Opens Door to Malicious Code Execution
May 21, 2025Defending Against APTs: Real-World Applications of MDR Services
May 21, 2025
Severity
High
Analysis Summary
CVE-2025-24189 CVSS:8.8
Apple macOS Sequoia could allow a remote attacker to execute arbitrary code on the system, caused by an error in the WebKit component when visiting a specially crafted Web site.
CVE-2025-31246 CVSS:7.8
Apple macOS Sonoma could allow a remote attacker to execute arbitrary code on the system, caused by an error in the afpfs component when connecting to a malicious AFP server.
Impact
- Code Execution
Indicators of Compromise
CVE
CVE-2025-24189
CVE-2025-31246
Affected Vendors
- Apple
Affected Products
- Apple macOS Sequoia - 15.2
- Apple macOS Sonoma - 14.7.5
Remediation
Refer to Apple Security Advisory for patch, upgrade, or suggested workaround information.