CVE-2025-30429: An app may be able to break out of its sandbox in Apple iOS and iPadOS
A path handling issue was addressed with improved validation. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.4, visionOS 2.4, watchOS 11.4. An app may be able to break out of its sandbox.
AI Analysis
Technical Summary
This vulnerability involves a path handling flaw in Apple iOS and iPadOS that could enable an app to escape its sandbox environment, potentially leading to unauthorized access or actions beyond its intended scope. Apple fixed this issue by improving validation of path handling in iOS 18.4, iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.4, visionOS 2.4, and watchOS 11.4. The CVSS 3.1 vector indicates the attack requires local access with low complexity and low privileges, no user interaction, and impacts confidentiality, integrity, and availability with low to medium impact.
Potential Impact
An app exploiting this vulnerability could break out of its sandbox, potentially gaining unauthorized access to system resources or data beyond its permitted boundaries. This could lead to partial compromise of confidentiality, integrity, and availability of the affected device. However, exploitation requires local access and low privileges, limiting the attack surface.
Mitigation Recommendations
A fix is available and has been released by Apple in iOS 18.4, iPadOS 18.4, iPadOS 17.7.6, and other related OS versions. Users and administrators should update affected devices to these versions or later to remediate this vulnerability. There is no indication of known exploits in the wild at this time.
CVE-2025-30429: An app may be able to break out of its sandbox in Apple iOS and iPadOS
Description
A path handling issue was addressed with improved validation. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.4, visionOS 2.4, watchOS 11.4. An app may be able to break out of its sandbox.
CVSS v3.1
Score 6.3medium
Affected software
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability involves a path handling flaw in Apple iOS and iPadOS that could enable an app to escape its sandbox environment, potentially leading to unauthorized access or actions beyond its intended scope. Apple fixed this issue by improving validation of path handling in iOS 18.4, iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.4, visionOS 2.4, and watchOS 11.4. The CVSS 3.1 vector indicates the attack requires local access with low complexity and low privileges, no user interaction, and impacts confidentiality, integrity, and availability with low to medium impact.
Potential Impact
An app exploiting this vulnerability could break out of its sandbox, potentially gaining unauthorized access to system resources or data beyond its permitted boundaries. This could lead to partial compromise of confidentiality, integrity, and availability of the affected device. However, exploitation requires local access and low privileges, limiting the attack surface.
Mitigation Recommendations
A fix is available and has been released by Apple in iOS 18.4, iPadOS 18.4, iPadOS 17.7.6, and other related OS versions. Users and administrators should update affected devices to these versions or later to remediate this vulnerability. There is no indication of known exploits in the wild at this time.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- apple
- Date Reserved
- 2025-03-22T00:04:43.716Z
- Cvss Version
- 3.1
- State
- PUBLISHED
Threat ID: 69091543c28fd46ded7bb32c
Added to database: 11/03/2025, 20:49:07 UTC
Last enriched: 06/18/2026, 17:01:51 UTC
Last updated: 06/27/2026, 08:51:16 UTC
Views: 194
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.