CVE-2025-24268

A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Sequoia 15.4. An app may be able to access sensitive user data...

CVE-2025-24284

This issue was addressed with improved checks to prevent unauthorized actions. This issue is fixed in macOS Sequoia 15.4. An app may be able to break out of its sandbox...

CVE-2025-30431

The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. A malicious app may be able to access private information...

CVE-2025-24165

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. An app may be able to cause unexpected system termination...

CVE-2025-30431

The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. A malicious app may be able to access private information...

CVE-2025-24268

A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Sequoia 15.4. An app may be able to access sensitive user data...

CVE-2025-24268

The CVE-2025-24268 issue is tied to macOS Sequoia: a parsing problem in the handling of directory paths allowed an application to access sensitive user data. Root cause: inadequate path validation. Affected versions are prior to macOS Sequoia 15.4; the fix is implemented in Sequoia 15.4. Practica...

EUVD-2025-210119

An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Tahoe 26.1. A malicious app may be able to access sensitive user data...

CVE-2025-43339

An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Tahoe 26.1. A malicious app may be able to access sensitive user data...

CVE-2025-43339

CVE-2025-43339 concerns an access issue in macOS Tahoe prior to 26.1 where a malicious app could access sensitive user data. The PT-2025-55367 entry corroborates this and states the vulnerability is mitigated by additional sandbox restrictions, with the fix available in macOS Tahoe 26.1. Affected...

CVE-2025-46315

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Tahoe 26.1. An app may be able to access protected user data...

EUVD-2025-210118

This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sequoia 15.4. An app may be able to access protected user data...

CVE-2025-46315

CVE-2025-46315 describes a permissions issue in macOS Tahoe prior to update. An application may be able to access protected user data due to insufficient restrictions. Affected software is macOS Tahoe; the fix is implemented in macOS Tahoe 26.1. Practical impact is high (C:H/I:N/A:N per CVSS 3.1 ...

CVE-2025-46293

This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sequoia 15.4. An app may be able to access protected user data...

CVE-2025-46315

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Tahoe 26.1. An app may be able to access protected user data...

CVE-2025-46293

The CVE-2025-46293 issue relates to macOS prior to Sequoia 15.4 where improper handling of symbolic links could allow an app to access protected user data. The root cause is described as improved handling of symlinks in Sequoia 15.4, which fixes the vulnerability. The fix is to update to macOS Se...

CVE-2025-31272

The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4. An app may be able to bypass launch constraint protections and execute malicious code with elevated privileges...

CVE-2025-31272

CVE-2025-31272 affects macOS Sequoia (initially reported as a bypass of launch-constraint protections). The issue enables an app to bypass launch constraints and execute malicious code with elevated privileges. It is fixed in macOS Sequoia 15.4. Affected versions prior to Sequoia 15.4 are address...

CVE-2025-30459

A privacy issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.4. An app may be able to access sensitive user data...

CVE-2025-30459

The CVE-2025-30459 entry describes a privacy issue in macOS Sequoia where an application may access sensitive user data. A root cause is identified as the presence of vulnerable code that has been removed, with the fix shipped in macOS Sequoia 15.4. Affected software is macOS Sequoia (earlier tha...