Security News > 2025 > April > Apple 'AirBorne' flaws can lead to zero-click AirPlay RCE attacks

Apple 'AirBorne' flaws can lead to zero-click AirPlay RCE attacks

2025-04-29 17:32

A set of security vulnerabilities in Apple's AirPlay Protocol and AirPlay Software Development Kit (SDK) exposed unpatched third-party and Apple devices to various attacks, including remote code execution. [...]

News URL

https://www.bleepingcomputer.com/news/security/apple-airborne-flaws-can-lead-to-zero-click-airplay-rce-attacks/

#apple #attack #RCE

Related news

CISA Warns of CentreStack's Hard-Coded MachineKey Vulnerability Enabling RCE Attacks (source)
Apple fixes two zero-days exploited in targeted iPhone attacks (source)
Apple Patches Two Actively Exploited iOS Flaws Used in Sophisticated Targeted Attacks (source)
Apple plugs zero-day holes used in targeted iPhone attacks (CVE-2025-31200, CVE-2025-31201) (source)
Apple Patches Two Zero-Days Used in ‘Extremely Sophisticated’ Attacks (source)
Active! Mail RCE flaw exploited in attacks on Japanese orgs (source)
Craft CMS RCE exploit chain used in zero-day attacks to steal data (source)
Wormable AirPlay Flaws Enable Zero-Click RCE on Apple Devices via Public Wi-Fi (source)
Samsung MagicINFO 9 Server RCE flaw now exploited in attacks (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Apple		75	247	1635	2313	267	4462

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.