Actively Exploited in the Wild

This vulnerability is being actively exploited in the wild.

Primary

Context

Apple Products Pointer Authentication Bypass Vulnerability

Vulnerability

Exploited

Patched

A vulnerability allowing an attacker with arbitrary read and write capabilities to bypass Pointer Authentication has been identified in various Apple products, including iOS, iPadOS, macOS Sequoia, tvOS, and visionOS. This vulnerability was addressed by removing the vulnerable code, and the exploitation of this issue may have been involved in a sophisticated attack targeting specific individuals on iOS.

Impact

Exploitation of this vulnerability could lead to a bypass of Pointer Authentication, potentially allowing for unauthorized manipulation of code execution.

Remediation

Users can update to the latest versions of iOS, iPadOS, macOS Sequoia, tvOS, and visionOS to address this vulnerability. Instructions for updating can be found on the Apple Support website.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

5.0

exploitability

5.0

remediation

7.7

relevance

0.0

threat

8.1

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

5.0

exploitability

5.0

remediation

7.7

relevance

0.0

threat

8.1

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Actively Exploited in the Wild

Apple Products Pointer Authentication Bypass Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Apple tvOS

Apple visionOS

Apple iPadOS

Apple macOS Sequoia

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating