CVE-2024-54518

The issue was addressed with improved bounds checks. This issue is fixed in macOS Sequoia 15.2, watchOS 11.2, tvOS 18.2, iOS 18.2 and iPadOS 18.2. An app may be able to corrupt coprocessor memory...

CVE-2024-54518

CVE-2024-54518: Root cause is an insufficient bounds-check in a component that can affect coprocessor memory. The issue is fixed by Apple in macOS Sequoia 15.2, watchOS 11.2, tvOS 18.2, iOS 18.2 and iPadOS 18.2. Affected products scope is Apple OS family; no exploit details are provided in the so...

CVE-2025-24131

The issue was addressed with improved memory handling. This issue is fixed in visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. An attacker in a privileged position may be able to perform a denial-of-service...

CVE-2025-24131

The issue was addressed with improved memory handling. This issue is fixed in iOS 18.3 and iPadOS 18.3, iPadOS 17.7.6, macOS Sequoia 15.3, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.3, visionOS 2.3. An attacker on the local network may be able to cause a denial-of-service...

CVE-2025-24166

...

CVE-2025-24166

Apple security advisory PT-2025-5329 links CVE-2025-24166 to a memory/state-management weakness that can be triggered by processing malicious web content, causing an unexpected process crash. Affected products and minimum patch levels cite: iPadOS before 17.7.4; macOS Ventura before 13.7.3; macOS...

CVE-2025-24086

The issue was addressed with improved memory handling. This issue is fixed in iOS 18.3 and iPadOS 18.3, iPadOS 17.7.4, macOS Sequoia 15.3, macOS Sonoma 14.7.3, macOS Ventura 13.7.3, tvOS 18.3, visionOS 2.3, watchOS 11.3. Processing an image may lead to a denial-of-service...

CVE-2025-24086

The issue was addressed with improved memory handling. This issue is fixed in iPadOS 17.7.4, macOS Ventura 13.7.3, macOS Sonoma 14.7.3, visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. Processing an image may lead to a denial-of-service...

CVE-2025-24086

CVE-2025-24086 affects Apple image processing via the ImageIO component. The Apple advisory notes that processing an image may lead to a denial-of-service, caused by a memory handling issue, and lists affected platforms as iPadOS/iPadOS 17.x, macOS Ventura/ Sonoma, visionOS, iOS/iPadOS 18.x, macO...

CVE-2025-24141

Apple fixed an authentication issue in iOS 18.3 and iPadOS 18.3 that could allow an attacker with physical access to an unlocked device to access Photos when the app is locked. The vulnerability (CVE-2025-24141) is tied to improved state management in the Accessibility flow, with the impact descr...

CVE-2025-24161

The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4, macOS Sonoma 14.7.3, visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. Parsing a file may lead to an unexpected app termination...

CVE-2025-24161

CVE-2025-24161 affects Apple platforms and multiple components involved in parsing files. Apple’s security content shows this CVE being addressed in iPadOS 17.7.4, iOS 18.3, iPadOS 18.3, macOS Sonoma 14.7.3, macOS Sequoia 15.3, visionOS 2.3, watchOS 11.3, and tvOS 18.3. The underlying issue is a ...

CVE-2025-24177

A null pointer dereference was addressed with improved input validation. This issue is fixed in macOS Sequoia 15.3, iOS 18.3 and iPadOS 18.3. A remote attacker may be able to cause a denial-of-service...

CVE-2025-24177

CVE-2025-24177 is an Apple AirPlay vulnerability. The description notes a null pointer dereference that was addressed by improved input validation, with a fixed patch in macOS Sequoia 15.3 and iOS/iPadOS 18.3. The CVE entry indicates a possible remote denial-of-service if exploited. Connected App...

CVE-2024-54499

A use-after-free issue was addressed with improved memory management. This issue is fixed in visionOS 2.2, tvOS 18.2, watchOS 11.2, iOS 18.2 and iPadOS 18.2, macOS Sequoia 15.2. Processing a maliciously crafted image may lead to arbitrary code execution...

CVE-2024-54499

CVE-2024-54499 — Apple ImageIO use-after-free Description: A use-after-free issue in ImageIO was addressed by improved memory management. Processing a maliciously crafted image may lead to arbitrary code execution. Affected products/versions (as stated): visionOS 2.2, tvOS 18.2, watchOS 11.2, iOS...

CVE-2025-24160

The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4, macOS Sonoma 14.7.3, visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. Parsing a file may lead to an unexpected app termination...

CVE-2025-24160

CVE-2025-24160 is a vulnerability in Apple platforms (CoreAudio) where parsing a file may lead to an unexpected app termination. It is addressed in iPadOS 17.7.4, macOS Sonoma 14.7.3, visionOS 2.3, iOS 18.3, iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, and tvOS 18.3. Base metrics show CVSS 3.1 ...

CVE-2024-54512

The issue was addressed by removing the relevant flags. This issue is fixed in watchOS 11.2, iOS 18.2 and iPadOS 18.2. A system binary could be used to fingerprint a user's Apple Account...

CVE-2024-54512

CVE-2024-54512 concerns the Face Gallery component on Apple platforms. The issue allowed a system binary to fingerprint a user’s Apple Account. Apple addressed it by removing the relevant flags. Patches are included in watchOS 11.2 and iOS 18.2 / iPadOS 18.2. The Apple security content page for F...