CVE-2025-24085

Exploited in the Wild ✓ Confirmed 0-Day ★ Google Project Zero

Triaged: Feb. 18, 2026 13 articles

VulnLookup ↗ NVD ↗ MITRE ↗ Advisory ↗ P0 Sheet ↗ CISA KEV ↗

EPSS Score

Source: FIRST.org · 2026-05-24

13.07%

probability

This CVE has a 13.07% probability of being exploited in the next 30 days.

0% Top 94.2th percentile of all CVEs 100%

CVSS score unavailable

Neither CIRCL nor NVD returned a CVSS score for this CVE. View on VulnerabilityLookup ↗

Description

Project Zero

Use after free in CoreMedia

Attack Intelligence

CWE-118 · Incorrect Access of Indexable Resource ('Range Error') CWE-119 · Buffer Overflow CWE-416 · Use After Free CWE-664 · Improper Control of a Resource Through its Lifetime CWE-666 · Operation on Resource in Wrong Phase of Lifetime CWE-672 · Operation on a Resource after Expiration or Release CWE-825 · Expired Pointer Dereference

Google Project Zero

Patched

Jan. 27, 2025

Reported by

???

Root Cause Analysis

???

Exploits & PoC

Apple Patches Actively Exploited Zero-Day Affecting iPhones, Macs, and More

TheHackerNews

Apple fixes zero-day exploited in 'extremely sophisticated' attacks

BleepingComputer Feb 10, 2025

Apple fixes this year’s first actively exploited zero-day bug

BleepingComputer Jan 27, 2025

Apple Patches Two Actively Exploited iOS Flaws Used in Sophisticated Targeted Attacks

TheHackerNews

Apple Patches CVE-2025-43300 Zero-Day in iOS, iPadOS, and macOS Exploited in Targeted Attacks

TheHackerNews

Apple fixes two zero-day flaws exploited in 'sophisticated' attacks

BleepingComputer Dec 12, 2025

Apple fixes new zero-day flaw exploited in targeted attacks

BleepingComputer Aug 20, 2025

Apple backports zero-day patches to older iPhones and iPads

BleepingComputer Sep 16, 2025

Apple fixes WebKit zero-day exploited in ‘extremely sophisticated’ attacks

BleepingComputer Mar 11, 2025

Apple Backports Critical Fixes for 3 Recent 0-Days Impacting Older iOS and macOS Devices

TheHackerNews

Apple fixes two zero-days exploited in targeted iPhone attacks

BleepingComputer Apr 16, 2025

Apple Releases Patch for WebKit Zero-Day Vulnerability Exploited in Targeted Attacks

TheHackerNews

Apple Issues Security Updates After Two WebKit Flaws Found Exploited in the Wild

TheHackerNews Dec 13, 2025

Signal Intelligence

Confidenceⓘ

95%

EPSS 13.07%

Mentions 13

Last Seen Dec 13, 2025

CNA Information

Analyst Note

CVE-2025-24085 is a critical use-after-free vulnerability (CVSS 10.0) in Apple's operating systems with confirmed active exploitation in the wild targeting iOS versions before 17.2, corroborated by multiple credible news sources describing sophisticated attacks. The vulnerability has been officially patched across multiple Apple platforms (visionOS 2.3, iOS/iPadOS 18.3, macOS 15.3, watchOS 11.3, tvOS 18.3) and reported by Google Project Zero, providing strong evidence of legitimacy.

Threat Actors 8

Hacking Team

apt_group 🇮🇹 IT

Infy

apt_group Information theft and espionage 🇮🇷 IR

Red Dev 17

apt_group 🇨🇳 CN

Soft Cell

apt_group Information theft and espionage 🇨🇳 CN

The White Company

apt_group Information theft and espionage 🇨🇳 CN

Patched Lightning

apt_group 🇬🇭 GH

Mana Team

apt_group 🇨🇳 CN

Operation Triangulation

apt_group Information theft and espionage 🇷🇺 RU

Triage Info

Decided atFeb 18, 2026