CVE-2025-43329

CVE-2025-43329 is a permissions-related sandbox-bypass vulnerability in Apple platforms. The issue allows a locally authenticated app with low privileges and no user interaction to break out of its sandbox. It is fixed in tvOS 26, iOS 26, iPadOS 26, and watchOS 26. The NVD entry states a permissi...

CVE-2025-43299

CVE-2025-43299 affects macOS Sonoma 14.8, macOS Sequoia 15.7, iOS 18.7, and iPadOS 18.7. Description: a denial-of-service issue was addressed by improved input validation. Root cause: insufficient validation leading to DoS when handling certain inputs. Impact: potential crash or service disruptio...

CVE-2025-43299

A denial-of-service issue was addressed with improved validation. This issue is fixed in macOS Sonoma 14.8, macOS Sequoia 15.7, iOS 18.7 and iPadOS 18.7. An app may be able to cause a denial-of-service...

CVE-2025-43372

The issue was addressed with improved input validation. This issue is fixed in tvOS 26, watchOS 26, visionOS 26, macOS Tahoe 26, iOS 26 and iPadOS 26. Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory...

CVE-2025-43355

CVE-2025-43355 is a type confusion vulnerability addressed by Apple across multiple platforms. The issue, which can lead to a denial-of-service, is fixed in tvOS 26, watchOS 26, macOS Sonoma 14.8, iOS 26 and iPadOS 26, macOS Sequoia 15.7, visionOS 26, and iOS 18 and iPadOS 18.7. Root cause is a t...

CVE-2025-43302

CVE-2025-43302 is an out-of-bounds write issue addressed by Apple in multiple OS updates. Affected: tvOS 26, watchOS 26, macOS Sonoma 14.8, iOS 26 and iPadOS 26, macOS Sequoia 15.7, visionOS 26, iOS 18.7 and iPadOS 18.7. Root cause: insufficient bounds checking leading to potential system termina...

CVE-2025-43357

This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 18.7 and iPadOS 18.7, iOS 26 and iPadOS 26, macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. An app may be able to fingerprint the user...

CVE-2025-43357

This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 18.7 and iPadOS 18.7, iOS 26 and iPadOS 26, macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. An app may be able to fingerprint the user...

CVE-2025-43357

CVE-2025-43357 is an Apple vulnerability affecting iOS, iPadOS, and related components (Call History) that could allow fingerprinting of a user. The primary documented impact is exposure of sensitive information through redaction issues, with exploitation described as local in scope and requiring...

CVE-2025-43272

The issue was addressed with improved memory handling. This issue is fixed in visionOS 26, Safari 26, iOS 26 and iPadOS 26, watchOS 26. Processing maliciously crafted web content may lead to an unexpected Safari crash...

CVE-2025-43317

A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 26 and iPadOS 26, macOS Tahoe 26, tvOS 26, visionOS 26, watchOS 26. An app may be able to access sensitive user data...

CVE-2025-31255

An authorization issue was addressed with improved state management. This issue is fixed in iOS 26 and iPadOS 26, macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26, tvOS 26, watchOS 26. An app may be able to access sensitive user data...

CVE-2025-43347

This issue was addressed by removing the vulnerable code. This issue is fixed in visionOS 26, tvOS 26, iOS 26 and iPadOS 26, watchOS 26. An input validation issue was addressed...

CVE-2025-30468

Summary of CVE-2025-30468 : Several connected sources confirm a vulnerability in iOS/iPadOS before version 26 where Private Browsing tabs could be accessed without authentication due to improper state management. Apple has issued fixes in iOS 26 and iPadOS 26, addressing the issue through improve...

CVE-2025-31254

This issue was addressed with improved URL validation. This issue is fixed in Safari 26, iOS 26 and iPadOS 26. Processing maliciously crafted web content may lead to unexpected URL redirection...

CVE-2025-31254

This issue was addressed with improved URL validation. This issue is fixed in Safari 26, iOS 26 and iPadOS 26. Processing maliciously crafted web content may lead to unexpected URL redirection...

CVE-2025-24133

...

PT-2025-37795

Name of the Vulnerable Software and Affected Versions WebKitGTK versions prior to 2.48.7-0ubuntu0.25.04.2 WebKitGTK affected versions not specified Description WebKitGTK is a port of the WebKit web rendering engine to the GTK platform. Several security issues were discovered in the WebKitGTK Web...

PT-2025-37858

Name of the Vulnerable Software and Affected Versions: Apple tvOS versions prior to 26 Apple watchOS versions prior to 26 Apple visionOS versions prior to 26 Apple macOS versions prior to Tahoe 26 Apple iOS versions prior to 26 Apple iPadOS versions prior to 26 Description: Processing a malicious...

PT-2025-37849

Name of the Vulnerable Software and Affected Versions macOS versions prior to Sequoia 15.7 macOS versions prior to Sonoma 14.8 iOS versions prior to 18.7 iPadOS versions prior to 18.7 macOS versions prior to Tahoe 26 iOS versions prior to 26 iPadOS versions prior to 26 Description A permissions...