CVE-2025-24200

Exploited in the Wild ✓ Confirmed 0-Day ★ Google Project Zero

Triaged: Feb. 18, 2026 14 articles

VulnLookup ↗ NVD ↗ MITRE ↗ Advisory ↗ P0 Sheet ↗ CISA KEV ↗

EPSS Score

Source: FIRST.org · 2026-05-24

44.12%

probability

This CVE has a 44.12% probability of being exploited in the next 30 days.

0% Top 97.6th percentile of all CVEs 100%

CVSS score unavailable

Neither CIRCL nor NVD returned a CVSS score for this CVE. View on VulnerabilityLookup ↗

Description

Project Zero

A physical attack may disable USB Restricted Mode

Attack Intelligence

CWE-284 · Improper Access Control CWE-285 · Improper Authorization CWE-863 · Incorrect Authorization

Google Project Zero

Patched

Feb. 10, 2025

Reported by

Bill Marczak of The Citizen Lab at The University of Toronto’s Munk School

Apple fixes zero-day exploited in 'extremely sophisticated' attacks

BleepingComputer Feb 10, 2025

Apple Patches Two Actively Exploited iOS Flaws Used in Sophisticated Targeted Attacks

TheHackerNews

Apple Patches CVE-2025-43300 Zero-Day in iOS, iPadOS, and macOS Exploited in Targeted Attacks

TheHackerNews

Apple fixes two zero-day flaws exploited in 'sophisticated' attacks

BleepingComputer Dec 12, 2025

Apple fixes new zero-day flaw exploited in targeted attacks

BleepingComputer Aug 20, 2025

Apple backports zero-day patches to older iPhones and iPads

BleepingComputer Sep 16, 2025

Apple fixes WebKit zero-day exploited in ‘extremely sophisticated’ attacks

BleepingComputer Mar 11, 2025

Apple Zero-Click Flaw in Messages Exploited to Spy on Journalists Using Paragon Spyware

TheHackerNews

Apple Backports Critical Fixes for 3 Recent 0-Days Impacting Older iOS and macOS Devices

TheHackerNews

⚡ THN Weekly Recap: Google Secrets Stolen, Windows Hack, New Crypto Scams and More

TheHackerNews

Serbian police used Cellebrite zero-day hack to unlock Android phones

BleepingComputer Feb 28, 2025

Apple fixes two zero-days exploited in targeted iPhone attacks

BleepingComputer Apr 16, 2025

Apple Releases Patch for WebKit Zero-Day Vulnerability Exploited in Targeted Attacks

TheHackerNews

Apple Issues Security Updates After Two WebKit Flaws Found Exploited in the Wild

TheHackerNews Dec 13, 2025

Signal Intelligence

Confidenceⓘ

92%

EPSS 44.12%

Mentions 14

Last Seen Dec 13, 2025

CNA Information

Analyst Note

CVE-2025-24200 is confirmed as a zero-day exploited in highly sophisticated, targeted attacks against specific individuals, with official Apple acknowledgment and patches released across multiple iOS/iPadOS versions. The vulnerability enables physical attackers to bypass USB Restricted Mode on locked devices, and the existence of Google Project Zero reporting combined with active exploitation evidence provides strong corroboration of the confirmed status.