iOS-Attack-Chain-CVE-2025-31200-CVE-2025-31201
JGoyd
CVE-2025-31200 is a zero-day, zero-click RCE in iOS CoreAudio’s AudioConverterService, triggered by a malicious audio file via iMessage/SMS. Exploitation bypassed Blastdoor, enabled kernel escalation (CVE-2025-31201), and allowed token theft until patched in iOS 18.4.1 (Apr 16, 2025).
Growth over time
3 data points · 2026-04-11 → 2026-04-26How do you feel about this project?
Ask AI about iOS-Attack-Chain-CVE-2025-31200-CVE-2025-31201
Question copied to clipboardWhat is the JGoyd/iOS-Attack-Chain-CVE-2025-31200-CVE-2025-31201 GitHub project? Description: "CVE-2025-31200 is a zero-day, zero-click RCE in iOS CoreAudio’s AudioConverterService, triggered by a malicious audio file via iMessage/SMS. Exploitation bypassed Blastdoor, enabled kernel escalation (CVE-2025-31201), and allowed token theft until patched in iOS 18.4.1 (Apr 16, 2025).". Explain what it does, its main use cases, key features, and who would benefit from using it.
Question is copied to clipboard — paste it after the AI opens.
How to clone iOS-Attack-Chain-CVE-2025-31200-CVE-2025-31201
Clone via HTTPS
Clone via SSH
Download ZIP
Download master.zipFound an issue?
Report bugs or request features on the iOS-Attack-Chain-CVE-2025-31200-CVE-2025-31201 issue tracker:
Open GitHub Issues