Active Exploitation of macOS Kernel Vulnerability (CVE-2025-24118) Date Observed: Feb. 2, 2025, at 11:15 a.m. EST Description: A proof-of-concept (PoC) exploit for CVE-2025-24118, a critical macOS kernel vulnerability (CVSS 9.8), was publicly released. The flaw allows local privilege escalation via an out-of-bounds write. Threat actors are leveraging this to bypass security controls on unpatched devices. Source: securityonline.info/poc-explo…