CVE-2025-24132

CVE Database · CVE-2025-24132

CVE-2025-24132

· MEDIUMModified

CVSS v3.1

6.5

EPSS

3.13%

Published

Apr 30, 2025

Modified

Apr 2, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The issue was addressed with improved memory handling. This issue is fixed in AirPlay audio SDK 2.7.1 and AirPlay video SDK 3.6.0.126. An attacker on the local network may cause an unexpected app termination.

CVSS Vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Weaknesses (CWE)

CWE-119CWE-119

Affected Products (3)

apple · airplay_audio_software_development_kit (up to 2.7.1)vulnerable

apple · airplay_video_software_development_kit (up to 3.6.0.126)vulnerable

apple · carplay_communication_plug-in (up to r18.1)vulnerable

References (1)

https://support.apple.com/en-us/122403

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs