CVE-2026-28824

An authorization issue was addressed with improved state management. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4. An app may be able to access sensitive user data...

CVE-2026-28816

A path handling issue was addressed with improved validation. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4. An app may be able to delete files for which it does not have permission...

CVE-2026-20627

An issue existed in the handling of environment variables. This issue was addressed with improved validation. This issue is fixed in iOS 26.3 and iPadOS 26.3, macOS Sonoma 14.8.4, macOS Tahoe 26.3, visionOS 26.3, watchOS 26.3. An app may be able to access sensitive user data...

CVE-2026-20653

A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in iOS 18.7.5 and iPadOS 18.7.5, iOS 26.3 and iPadOS 26.3, macOS Sequoia 15.7.4, macOS Sonoma 14.8.4, macOS Tahoe 26.3, visionOS 26.3. An app may be able to access sensitive user da...

PT-2026-7730

Name of the Vulnerable Software and Affected Versions macOS versions prior to Sequoia 15.7.4 macOS versions prior to Sonoma 14.8.4 Description An authorization issue exists due to improved state management. This could allow an application to access sensitive user data. Recommendations Update to...

PT-2026-27538

Name of the Vulnerable Software and Affected Versions macOS versions prior to 14.8.4 macOS versions prior to 26.3 Description An authorization issue existed due to improved state management. This could allow an application to access sensitive user data. Recommendations Update to macOS version...

CVE-2025-43472

A validation issue was addressed with improved input sanitization. This issue is fixed in macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS Tahoe 26.1. An app may be able to gain root privileges...

CVE-2025-43364

CVE-2025-43364 describes a race condition in macOS components that could allow an app to break out of its sandbox. The issue was addressed with additional validation and is fixed in macOS Sonoma 14.8, macOS Sequoia 15.7 (and related advisories). The available sources (NVD/NCSC/Red Hat Apple secur...

CVE-2025-43334

This issue was addressed with additional entitlement checks. This issue is fixed in macOS Sequoia 15.7.2, macOS Tahoe 26.1, macOS Sonoma 14.8.2. An app may be able to access user-sensitive data...

CVE-2025-43408

This issue was addressed by restricting options offered on a locked device. This issue is fixed in macOS Sequoia 15.7.2, macOS Tahoe 26.1, macOS Sonoma 14.8.2. An attacker with physical access may be able to access contacts from the lock screen...

PT-2025-37853

Name of the Vulnerable Software and Affected Versions: macOS versions prior to Sonoma 14.8 macOS versions prior to Tahoe 26 Description: A privacy issue was addressed by relocating sensitive data. An application may be able to access protected user data. Recommendations: Update to macOS Sonoma...

Apple macOS Sonoma和Apple macOS Tahoe 安全漏洞

Apple macOS Sequoia and Apple macOS Tahoe are both operating systems from Apple USA Inc. A security vulnerability exists in Apple macOS Sonoma and Apple macOS Tahoe, which stems from insufficient privilege limitations and could result in an application gaining root privileges...

CVE-2024-27871

A path handling issue was addressed with improved validation. This issue is fixed in iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6. An app may be able to access protected user data...

The vulnerability of the WebKit component in the Safari browser, available on iOS operating systems, macOS Sonoma, iPadOS, and tvOS, allows a hacker to execute arbitrary code.

The vulnerability of the WebKit component in the Safari browser, as well as in the iOS and macOS Sonoma operating systems, iPadOS, and tvOS, is related to improper code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

CVE-2025-31183

The issue was addressed with improved restriction of data container access. This issue is fixed in macOS Sonoma 14.7.5, iOS 18.4 and iPadOS 18.4, tvOS 18.4, macOS Sequoia 15.4. An app may be able to access sensitive user data...

PT-2025-5300 · Apple · Macos Sonoma +7

Name of the Vulnerable Software and Affected Versions: iPadOS versions prior to 17.7.4 macOS Ventura versions prior to 13.7.3 macOS Sonoma versions prior to 14.7.3 visionOS versions prior to 2.3 iOS versions prior to 18.3 iPadOS versions prior to 18.3 macOS Sequoia versions prior to 15.3 tvOS...

PT-2024-19767 · Apple · Macos Sonoma +4

Name of the Vulnerable Software and Affected Versions: Safari versions prior to 17.4 iOS versions prior to 17.4 iPadOS versions prior to 17.4 macOS Sonoma versions prior to 14.4 Description: The issue was addressed through improved state management, affecting Private Browsing tabs which may be...

PT-2024-19737 · Apple · Macos Sonoma +3

Name of the Vulnerable Software and Affected Versions: macOS Sonoma versions prior to 14.4 iOS versions prior to 17.4 iPadOS versions prior to 17.4 Description: A privacy issue was addressed by not logging contents of text fields, which could allow an app to view Mail data. Recommendations: For...

The vulnerability of the AppleGraphicsControl component in the macOS Sonoma operating system allows a hacker to execute arbitrary code.

The vulnerability of the AppleGraphicsControl component in the macOS Sonoma operating system is related to writing beyond the buffer boundaries. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...

Apple macOS Security Breach

Apple macOS is a proprietary operating system developed by Apple Inc. for Mac computers. A security vulnerability exists in Apple macOS Sonoma version 14, which originates from an application that may be able to access Notes attachments...