Summary: Vulnerabilities in Apple’s AirPlay protocol could be exploited by attackers to take control of devices with minimal or no user interaction. A total of 23 security issues have been identified, allowing for various types of attacks, including wormable exploits leading to remote code execution. Apple has worked with Oligo Security to address these vulnerabilities in recent system updates.
Affected: Apple devices using AirPlay protocol and third-party devices utilizing the AirPlay SDK
Keypoints :
- 23 vulnerabilities identified in the AirPlay protocol, with 17 CVE identifiers issued.
- CVE-2025-24252 and CVE-2025-24132 allow for wormable zero-click remote code execution exploits.
- Exploitation can lead to lateral movement on enterprise networks, potential for espionage and ransomware attacks.
- Specific vulnerabilities can enable attackers to gain access to CarPlay devices, posing risks to drivers.
- Apple has released patches for these vulnerabilities in recent iOS, iPadOS, and macOS updates.
Source: https://www.securityweek.com/airplay-vulnerabilities-expose-apple-devices-to-zero-click-takeover/