CVE-2025-24190

The issue was addressed with improved memory handling. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.4, visionOS 2.4, watchOS 11.4. Processing a maliciously crafted video file may lead to unexpected app...

CVE-2025-30429

A path handling issue was addressed with improved validation. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.4, visionOS 2.4, watchOS 11.4. An app may be able to break out of its sandbox...

CVE-2025-24217

This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, tvOS 18.4, watchOS 11.4. An app may be able to access sensitive user data...

CVE-2025-30469

This issue was addressed through improved state management. This issue is fixed in iOS 18.4 and iPadOS 18.4. A person with physical access to an iOS device may be able to access photos from the lock screen...

CVE-2025-30469

CVE-2025-30469 concerns a lock-screen photo exposure on iOS devices. The public description states that the issue was addressed through improved state management and is fixed in iOS 18.4 and iPadOS 18.4 . The vulnerability allows a person with physical access to an iOS device to potentially view ...

CVE-2025-30469

This issue was addressed through improved state management. This issue is fixed in iOS 18.4 and iPadOS 18.4. A person with physical access to an iOS device may be able to access photos from the lock screen...

CVE-2025-24095

This issue was addressed with additional entitlement checks. This issue is fixed in iOS 18.4 and iPadOS 18.4, visionOS 2.4. An app may be able to bypass Privacy preferences...

CVE-2025-24095

This issue was addressed with additional entitlement checks. This issue is fixed in visionOS 2.4, iOS 18.4 and iPadOS 18.4. An app may be able to bypass Privacy preferences...

CVE-2025-24095

CVE-2025-24095 involves Apple platforms where an app may bypass Privacy preferences due to entitlement-related issues. Connected sources confirm the root cause as insufficient entitlement checks, which Apple addressed by enforcing stricter entitlement validation in visionOS 2.4, iOS 18.4, and iPa...

CVE-2025-24216

CVE-2025-24216 is an Apple WebKit vulnerability: processing malicious web content may cause an unexpected Safari crash. Public records indicate fixes in visionOS 2.4, tvOS 18.4, iPadOS 18.4, iOS 18.4, macOS Sequoia 15.4, and Safari 18.4. The connected documents confirm this CVE within the WebKit/...

CVE-2025-24216

The issue was addressed with improved memory handling. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, tvOS 18.4, visionOS 2.4, watchOS 11.4. Processing maliciously crafted web content may lead to an unexpected Safari crash...

CVE-2025-30428

This issue was addressed through improved state management. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6. Photos in the Hidden Photos Album may be viewed without authentication...

CVE-2025-30428

This issue was addressed through improved state management. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6. Photos in the Hidden Photos Album may be viewed without authentication...

CVE-2025-30428

CVE-2025-30428 affects Apple iOS/iPadOS with a vulnerability where photos in the Hidden Photos Album could be viewed without authentication. Description: fixed via improved state management. Affected products/versions and fixes per connected sources include iOS 18.4, iPadOS 18.4, and iPadOS 17.7....

CVE-2025-24257

An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in visionOS 2.4, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. An app may be able to cause unexpected system termination or write kernel memory...

CVE-2025-31184

This issue was addressed with improved permissions checking. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, visionOS 2.4. An app may gain unauthorized access to Local Network...

CVE-2025-30465

A permissions issue was addressed with improved validation. This issue is fixed in iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sequoia 15.7.2, macOS Sonoma 14.7.5, macOS Sonoma 14.8.2, macOS Tahoe 26.1, macOS Ventura 13.7.5. A shortcut may be able to access files that are normally inaccessible to th...

CVE-2025-30465

CVE-2025-30465 is a permissions issue in Shortcuts where a shortcut could access files normally inaccessible. Root cause: insufficient validation allowed access to restricted files. Fixes are in macOS Ventura 13.7.5, iPadOS 17.7.6, macOS Sequoia 15.4, and macOS Sonoma 14.7.5. Impact: potential un...

CVE-2025-30465

A permissions issue was addressed with improved validation. This issue is fixed in macOS Ventura 13.7.5, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5. A shortcut may be able to access files that are normally inaccessible to the Shortcuts app...

PT-2025-23203

Name of the Vulnerable Software and Affected Versions: Safari versions prior to 18.4 iOS versions prior to 18.4 iPadOS versions prior to 18.4 visionOS versions prior to 2.4 macOS Sequoia versions prior to 15.4 Description: The issue allows a website to bypass Same Origin Policy. This was addresse...