CVE-2023-42961

CVE-2023-42961 describes a path-handling issue in Apple OS components that could allow a sandboxed process to circumvent sandbox restrictions. The flaw is mitigated by updated validations and is fixed in iOS 17/iPadOS 17, iOS 16.7/iPadOS 16.7, macOS Sonoma 14, macOS Ventura 13.6, and macOS Monter...

CVE-2025-30456

A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. An app may be able to gain root privileges...

CVE-2025-31183

The issue was addressed with improved restriction of data container access. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5, tvOS 18.4, watchOS 11.4. An app may be able to access sensitive user data...

CVE-2025-30425

This issue was addressed through improved state management. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, tvOS 18.4, watchOS 11.4. A malicious website may be able to track users in Safari private browsing mode...

CVE-2025-24178

This issue was addressed through improved state management. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.4, watchOS 11.4. An app may be able to break out of its sandbox...

CVE-2025-24173

This issue was addressed with additional entitlement checks. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.4, visionOS 2.4, watchOS 11.4. An app may be able to break out of its sandbox...

CVE-2025-24238

A logic issue was addressed with improved checks. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.4, watchOS 11.4. An app may be able to gain elevated privileges...

CVE-2025-24210

A logic error was addressed with improved error handling. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.4, visionOS 2.4, watchOS 11.4. Parsing an image may lead to disclosure of user information...

PT-2025-20753 · Apple · Macos Sonoma +6

Name of the Vulnerable Software and Affected Versions: macOS Sonoma versions prior to 14.7.6 iPadOS versions prior to 17.7.7 iOS versions prior to 18.5 iPadOS versions prior to 18.5 visionOS versions prior to 2.5 macOS Ventura versions prior to 13.7.6 macOS Sequoia versions prior to 15.4...

PT-2025-13965

Name of the Vulnerable Software and Affected Versions: visionOS versions prior to 2.4 macOS Ventura versions prior to 13.7.5 tvOS versions prior to 18.4 iPadOS versions prior to 17.7.6 iOS versions prior to 18.4 iPadOS versions prior to 18.4 macOS Sequoia versions prior to 15.4 macOS Sonoma...

PT-2025-13895 · Apple · Macos Sonoma +5

Name of the Vulnerable Software and Affected Versions: macOS Ventura versions prior to 13.7.5 iOS versions prior to 18.4 iPadOS versions prior to 18.4 iPadOS versions prior to 17.7.6 macOS Sequoia versions prior to 15.4 macOS Sonoma versions prior to 14.7.5 Description: An authorization issue was...

About the security content of iOS 16.7.11 and iPadOS 16.7.11

About the security content of iOS 16.7.11 and iPadOS 16.7.11 This document describes the security content of iOS 16.7.11 and iPadOS 16.7.11. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred...

CVE-2022-48610

This issue was addressed through improved state management. This issue is fixed in macOS Ventura 13.1, watchOS 9.2, iOS 16.2 and iPadOS 16.2. An app may be able to access user-sensitive data...

About the security content of iOS 18.3.1 and iPadOS 18.3.1

About the security content of iOS 18.3.1 and iPadOS 18.3.1 This document describes the security content of iOS 18.3.1 and iPadOS 18.3.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and...

CVE-2024-54523

CVE-2024-54523 affects Apple OS families (macOS Sequoia 15.2, watchOS 11.2, tvOS 18.2, iOS 18.2, iPadOS 18.2). The issue, described as a memory handling/bounds problem, could allow an app to corrupt coprocessor memory. The publicly documented fix is “improved bounds checks” implemented in the lis...

CVE-2025-24154

An out-of-bounds write was addressed with improved input validation. This issue is fixed in iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, macOS Sonoma 14.7.3, macOS Ventura 13.7.3, visionOS 2.3. An attacker may be able to cause unexpected system termination or corrupt kernel memory...

CVE-2025-24104

This issue was addressed with improved handling of symlinks. This issue is fixed in iPadOS 17.7.4, iOS 18.3 and iPadOS 18.3. Restoring a maliciously crafted backup file may lead to modification of protected system files...

CVE-2025-24128

The issue was addressed by adding additional logic. This issue is fixed in Safari 18.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3. Visiting a malicious website may lead to address bar spoofing...

PT-2025-20742 · Apple · Macos Sonoma +7

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 15.3 macOS Sonoma versions prior to 14.7.6 visionOS versions prior to 2.3 iPadOS versions prior to 17.7.7 watchOS versions prior to 11.3 macOS Ventura versions prior to 13.7.6 iOS versions prior to 18.3 iPadOS versions...

CVE-2024-27856

The issue was addressed with improved checks. This issue is fixed in Safari 17.5, iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, tvOS 17.5, visionOS 1.2, watchOS 10.5. Processing a file may lead to unexpected app termination or arbitrary code execution...