← ExploitWatch
HomeExploited Vulnerabilities

CVE-2025-24200 — Actively Exploited: iOS and iPadOS (Apple)

Apple iOS and iPadOS contains an incorrect authorization vulnerability that allows a physical attacker to disable USB Restricted Mode on a locked device.

CVE IDCVE-2025-24200
VendorApple
ProductiOS and iPadOS
Vulnerability nameApple iOS and iPadOS Incorrect Authorization Vulnerability
Date added2025-02-12
Remediation due2025-03-05
Known ransomware useUnknown
Required actionApply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
DescriptionApple iOS and iPadOS contains an incorrect authorization vulnerability that allows a physical attacker to disable USB Restricted Mode on a locked device.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →