CVE-2025-24180

N/A Published on 2025-03-31

[Apple Authentication Services] A malicious website may be able to claim WebAuthn credentials from another website that shares a registrable suffix

EPSS 0.17% exploit very unlikely percentile 38.1%

OS versions that fix this CVE

This CVE is resolved by the following OS security releases. Update the OS to at least the listed version.