Macos Security Vulnerabilities and Issues — Page 36 of Macos CVE List

7.8CVSS7.2AI score0.00118EPSS

CVE-2019-8533

A lock handling issue was addressed with improved lock handling. This issue is fixed in macOS Mojave 10.14.4. A Mac may not lock when disconnecting from an external monitor.

7.8CVSS7.1AI score0.53EPSS

CVE-2019-8561

A logic issue was addressed with improved validation. This issue is fixed in macOS Mojave 10.14.4. A malicious application may be able to elevate privileges.

7.8CVSS7.6AI score0.00119EPSS

CVE-2019-8616

A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Mojave 10.14.5. An application may be able to execute arbitrary code with system privileges.

7.8CVSS7.9AI score0.00131EPSS

CVE-2019-8701

A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Catalina 10.15. An application may be able to execute arbitrary code with system privileges.

CVE•added 2020/10/27 9:15 p.m.•61 views

CVE-2019-8858

A logic issue was addressed with improved state management. This issue is fixed in macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006. A user who shares their screen may not be able to end screen sharing.

5.3CVSS5.7AI score0.00241EPSS

CVE•added 2020/12/08 8:15 p.m.•61 views

CVE-2020-10006

This issue was addressed with improved entitlements. This issue is fixed in macOS Big Sur 11.0.1. A malicious application may be able to access restricted files.

5.5CVSS5.3AI score0.00314EPSS

CVE•added 2020/12/08 8:15 p.m.•61 views

CVE-2020-10011

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 14.2 and iPadOS 14.2, macOS Catalina 10.15.7, Security Update 2020-005 High Sierra, Security Update 2020-005 Mojave. Processing a maliciously crafted USD file may lead to unexpected application termination...

7.8CVSS7.3AI score0.00748EPSS

CVE•added 2021/04/02 6:15 p.m.•61 views

CVE-2020-27893

An issue existed in screen sharing. This issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1. A user with screen sharing access may be able to view another user's screen.

6.5CVSS6AI score0.00405EPSS

CVE•added 2021/04/02 6:15 p.m.•61 views

CVE-2020-27914

A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, macOS Big Sur 11.0.1. A malicious application may be able to execute arbitrary code with system privileges.

9.3CVSS7.7AI score0.00235EPSS

CVE•added 2020/10/27 9:15 p.m.•61 views

CVE-2020-9774

An issue existed with Siri Suggestions access to encrypted data. The issue was fixed by limiting access to encrypted data. This issue is fixed in macOS Catalina 10.15.3, Security Update 2020-001 Mojave, Security Update 2020-001 High Sierra. Encrypted data may be inappropriately accessed.

7.5CVSS7.8AI score0.00151EPSS

CVE•added 2020/06/09 5:15 p.m.•61 views

CVE-2020-9832

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.5. A malicious application may be able to determine kernel memory layout.

5.5CVSS5.2AI score0.00226EPSS

CVE•added 2020/06/09 5:15 p.m.•61 views

CVE-2020-9841

An integer overflow was addressed through improved input validation. This issue is fixed in macOS Catalina 10.15.5. An application may be able to execute arbitrary code with kernel privileges.

9.3CVSS7.5AI score0.00264EPSS

CVE•added 2020/12/08 8:15 p.m.•61 views

CVE-2020-9974

A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2, tvOS 14.2, watchOS 7.1. A malicious application may be able to determine kernel memory layout.

5.5CVSS4.9AI score0.00349EPSS

CVE•added 2021/09/08 2:15 p.m.•61 views

CVE-2021-30803

A permissions issue was addressed with improved validation. This issue is fixed in macOS Big Sur 11.5. A malicious application may be able to access a user’s recent Contacts.

4.3CVSS4.8AI score0.00177EPSS

CVE•added 2021/10/19 2:15 p.m.•61 views

CVE-2021-30830

A memory corruption issue was addressed with improved memory handling. This issue is fixed in Security Update 2021-005 Catalina, macOS Big Sur 11.6. A malicious application may be able to execute arbitrary code with kernel privileges.

9.3CVSS7.5AI score0.00195EPSS

CVE•added 2021/08/24 7:15 p.m.•61 views

CVE-2021-30961

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in Security Update 2021-008 Catalina, macOS Big Sur 11.6.2. Parsing a maliciously crafted audio file may lead to disclosure of user information.

5.5CVSS6AI score0.00235EPSS

7.8CVSS7.9AI score0.0011EPSS

CVE-2022-32899

The issue was addressed with improved memory handling. This issue is fixed in iOS 15.7 and iPadOS 15.7, iOS 16, macOS Ventura 13, watchOS 9. An app may be able to execute arbitrary code with kernel privileges.

8.8CVSS8.2AI score0.02326EPSS

CVE-2022-32934

The issue was addressed with improved memory handling. This issue is fixed in macOS Big Sur 11.7, macOS Ventura 13, macOS Monterey 12.6. A remote user may be able to cause kernel code execution.

5.5CVSS5.7AI score0.00061EPSS

CVE-2022-42788

A permissions issue existed. This issue was addressed with improved permission validation. This issue is fixed in macOS Ventura 13. A malicious application may be able to read sensitive location information.

5.5CVSS6.2AI score0.00074EPSS

CVE-2022-42789

An issue in code signature validation was addressed with improved checks. This issue is fixed in macOS Big Sur 11.7, macOS Ventura 13, macOS Monterey 12.6. An app may be able to access user-sensitive data.

5.5CVSS6AI score0.00013EPSS

CVE-2022-42793

An issue in code signature validation was addressed with improved checks. This issue is fixed in macOS Big Sur 11.7, macOS Ventura 13, iOS 16, iOS 15.7 and iPadOS 15.7, macOS Monterey 12.6. An app may be able to bypass code signing checks.

5.9CVSS6AI score0.00309EPSS

CVE-2022-42818

This issue was addressed with improved data protection. This issue is fixed in macOS Ventura 13. A user in a privileged network position may be able to track user activity.

CVE•added 2023/06/23 6:15 p.m.•61 views

CVE-2023-28202

This issue was addressed with improved state management. This issue is fixed in iOS 16.5 and iPadOS 16.5, watchOS 9.5, tvOS 16.5, macOS Ventura 13.4. An app firewall setting may not take effect after exiting the Settings app.

5.5CVSS5.1AI score0.00025EPSS

CVE•added 2023/06/23 6:15 p.m.•61 views

CVE-2023-32392

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, macOS Big Sur 11.7.7, macOS Monterey 12.6.6, iOS 16.5 and iPadOS 16.5. An app may be able to read sensitive location information.

5.5CVSS5.5AI score0.00023EPSS

CVE•added 2024/06/10 8:15 p.m.•61 views

CVE-2023-40389

The issue was addressed with improved restriction of data container access. This issue is fixed in macOS Ventura 13.6.5, macOS Monterey 12.7.4. An app may be able to access sensitive user data.

5.5CVSS5.7AI score0.00032EPSS

CVE•added 2023/09/27 3:19 p.m.•61 views

CVE-2023-40410

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Ventura 13.6, tvOS 17, macOS Monterey 12.7, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to disclose kernel memory.

5.5CVSS4.9AI score0.00027EPSS

CVE•added 2023/09/27 3:19 p.m.•61 views

CVE-2023-41067

A logic issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14. An app may bypass Gatekeeper checks.

5.5CVSS5.4AI score0.00016EPSS

CVE•added 2024/01/10 10:15 p.m.•61 views

CVE-2023-42872

The issue was addressed with additional permissions checks. This issue is fixed in macOS Sonoma 14, iOS 17 and iPadOS 17. An app may be able to access sensitive user data.

5.5CVSS5AI score0.00062EPSS

CVE•added 2023/12/12 1:15 a.m.•61 views

CVE-2023-42901

Multiple memory corruption issues were addressed with improved input validation. This issue is fixed in macOS Sonoma 14.2. Processing a maliciously crafted file may lead to unexpected app termination or arbitrary code execution.

7.8CVSS8AI score0.00034EPSS

CVE•added 2024/03/08 2:15 a.m.•61 views

CVE-2024-23285

This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sonoma 14.4. An app may be able to create symlinks to protected regions of the disk.

7.8CVSS6.4AI score0.00052EPSS

CVE•added 2024/06/10 8:15 p.m.•61 views

CVE-2024-27792

This issue was addressed by adding an additional prompt for user consent. This issue is fixed in macOS Sonoma 14.4. An app may be able to access user-sensitive data.

5.5CVSS6.3AI score0.0007EPSS

CVE•added 2024/05/14 3:13 p.m.•61 views

CVE-2024-27843

A logic issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.5. An app may be able to elevate privileges.

7.8CVSS4.5AI score0.00054EPSS

CVE•added 2024/07/29 11:15 p.m.•61 views

CVE-2024-40774

A downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in macOS Ventura 13.6.8, macOS Monterey 12.7.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, macOS Sonoma 14.6. An app may be able to bypass Privacy preferences.

7.1CVSS5.8AI score0.00032EPSS

CVE•added 2024/07/29 11:15 p.m.•61 views

CVE-2024-40816

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. A local attacker may be able to cause unexpected system shutdown.

5.5CVSS5.8AI score0.00033EPSS

CVE•added 2025/01/27 10:15 p.m.•61 views

CVE-2025-24086

The issue was addressed with improved memory handling. This issue is fixed in iPadOS 17.7.4, macOS Ventura 13.7.3, macOS Sonoma 14.7.3, visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. Processing an image may lead to a denial-of-service.

5.5CVSS5.8AI score0.00022EPSS

CVE•added 2025/01/30 5:15 p.m.•61 views

CVE-2025-24099

The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.3, macOS Ventura 13.7.3, macOS Sonoma 14.7.3. A local attacker may be able to elevate their privileges.

5.1CVSS4.2AI score0.00017EPSS

9.8CVSS5.8AI score0.00074EPSS

CVE-2025-24211

This issue was addressed with improved memory handling. This issue is fixed in visionOS 2.4, macOS Ventura 13.7.5, tvOS 18.4, iPadOS 17.7.6, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5. Processing a maliciously crafted video file may lead to unexpected app termination or corru...

7.4CVSS6.5AI score0.00046EPSS

CVE-2025-30460

A permissions issue was addressed by removing vulnerable code and adding additional checks. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to access protected user data.

5.5CVSS5.5AI score0.00013EPSS

CVE-2025-30463

The issue was addressed with improved restriction of data container access. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. An app may be able to access sensitive user data.

5.5CVSS5.3AI score0.00012EPSS

CVE-2025-30470

A path handling issue was addressed with improved logic. This issue is fixed in visionOS 2.4, macOS Ventura 13.7.5, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to read sensitive location information.