Macos Security Vulnerabilities and Issues — Page 53 of Macos CVE List

5.5CVSS6.2AI score0.00045EPSS

CVE-2024-40837

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15. An app may be able to access protected user data.

5.5CVSS6.3AI score0.00088EPSS

CVE-2024-40845

The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.7, macOS Sequoia 15. Processing a maliciously crafted video file may lead to unexpected app termination.

5.5CVSS6.1AI score0.00038EPSS

CVE-2024-40847

The issue was addressed with additional code-signing restrictions. This issue is fixed in macOS Ventura 13.7, macOS Sonoma 14.7, macOS Sequoia 15. An app may be able to access sensitive user data.

4.6CVSS5.1AI score0.00054EPSS

CVE-2024-44137

The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS Sequoia 15, macOS Sonoma 14.7.1. An attacker with physical access may be able to share items from the lock screen.

6.5CVSS6.2AI score0.00077EPSS

CVE-2024-44151

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Ventura 13.7, macOS Sonoma 14.7, macOS Sequoia 15. An app may be able to modify protected parts of the file system.

5.5CVSS5.8AI score0.00038EPSS

CVE-2024-44181

An issue was addressed with improved handling of temporary files. This issue is fixed in macOS Ventura 13.7, macOS Sonoma 14.7, macOS Sequoia 15. An app may be able to read sensitive location information.

5.5CVSS6.3AI score0.00053EPSS

CVE-2024-44186

An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15. An app may be able to access protected user data.

5.5CVSS5.5AI score0.00067EPSS

CVE-2024-44197

The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. A malicious app may be able to cause a denial-of-service.

7.5CVSS5.5AI score0.00099EPSS

CVE-2024-44264

This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. A malicious app may be able to create symlinks to protected regions of the disk.

6.5CVSS5.5AI score0.00083EPSS

CVE-2024-44279

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. Parsing a file may lead to disclosure of user information.

6.5CVSS5.8AI score0.00053EPSS

CVE-2024-44284

An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. Parsing a maliciously crafted file may lead to an unexpected app termination.

5.3CVSS5.7AI score0.00027EPSS

CVE-2024-54518

The issue was addressed with improved bounds checks. This issue is fixed in macOS Sequoia 15.2, watchOS 11.2, tvOS 18.2, iOS 18.2 and iPadOS 18.2. An app may be able to corrupt coprocessor memory.

7.8CVSS5.7AI score0.0004EPSS

CVE-2024-54522

The issue was addressed with improved bounds checks. This issue is fixed in macOS Sequoia 15.2, watchOS 11.2, tvOS 18.2, iOS 18.2 and iPadOS 18.2. An app may be able to corrupt coprocessor memory.

5.5CVSS6AI score0.00023EPSS

CVE-2024-54536

The issue was addressed with improved validation of environment variables. This issue is fixed in macOS Sequoia 15.2. An app may be able to edit NVRAM variables.

5.5CVSS6AI score0.00023EPSS

CVE-2025-24087

The issue was addressed with additional permissions checks. This issue is fixed in macOS Sequoia 15.3. An app may be able to access protected user data.

7.8CVSS6.5AI score0.00024EPSS

CVE-2025-24274

An input validation issue was addressed by removing the vulnerable code. This issue is fixed in macOS Ventura 13.7.6, macOS Sequoia 15.5, macOS Sonoma 14.7.6. A malicious app may be able to gain root privileges.

7.1CVSS5.7AI score0.00042EPSS

CVE-2025-31232

A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.6, macOS Sequoia 15.5, macOS Sonoma 14.7.6. A sandboxed app may be able to access sensitive user data.

7.5CVSS6AI score0.00047EPSS

CVE-2025-31247

A logic issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.7.6, macOS Sequoia 15.5, macOS Sonoma 14.7.6. An attacker may gain access to protected parts of the file system.

7.1CVSS5.8AI score0.00044EPSS

CVE-2025-31249

A logic issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.5. An app may be able to access sensitive user data.

CVE•added 2024/01/10 10:15 p.m.•37 views

CVE-2022-32931

This issue was addressed with improved data protection. This issue is fixed in macOS Ventura 13. An app with root privileges may be able to access private information.

5.5CVSS5.2AI score0.00131EPSS

CVE•added 2023/06/23 6:15 p.m.•37 views

CVE-2022-42807

A logic issue was addressed with improved state management. This issue is fixed in macOS Ventura 13. A user may accidentally add a participant to a Shared Album by pressing the Delete key

4.3CVSS4.3AI score0.00082EPSS

CVE•added 2023/09/06 2:15 a.m.•37 views

CVE-2023-28187

This issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.3. A user may be able to cause a denial-of-service.

6.5CVSS5.8AI score0.00286EPSS

CVE•added 2023/08/14 11:15 p.m.•37 views

CVE-2023-28199

An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue is fixed in macOS Ventura 13.3. An app may be able to disclose kernel memory.

5.5CVSS5.7AI score0.0006EPSS

CVE•added 2023/09/06 2:15 a.m.•37 views

CVE-2023-28214

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.3. An app may be able to cause unexpected system termination or write kernel memory.

7.8CVSS7.2AI score0.00083EPSS

CVE•added 2023/09/06 2:15 a.m.•37 views

CVE-2023-32362

Error handling was changed to not reveal sensitive information. This issue is fixed in macOS Ventura 13.3. A website may be able to track sensitive user information.

6.5CVSS6.4AI score0.00309EPSS

CVE•added 2023/09/27 3:18 p.m.•37 views

CVE-2023-32421

A privacy issue was addressed with improved handling of temporary files. This issue is fixed in macOS Sonoma 14. An app may be able to observe unprotected user data.

5.5CVSS5.1AI score0.00116EPSS

CVE•added 2023/12/12 1:15 a.m.•37 views

CVE-2023-42906

Multiple memory corruption issues were addressed with improved input validation. This issue is fixed in macOS Sonoma 14.2. Processing a maliciously crafted file may lead to unexpected app termination or arbitrary code execution.

7.8CVSS8AI score0.00034EPSS

7.5CVSS5.8AI score0.00136EPSS

CVE-2024-27869

The issue was addressed with improved checks. This issue is fixed in iOS 18 and iPadOS 18, macOS Sequoia 15. An app may be able to record the screen without an indicator.

5.5CVSS6.3AI score0.0006EPSS

CVE-2024-27875

A logic issue was addressed with improved state management. This issue is fixed in macOS Sequoia 15. Privacy Indicators for microphone or camera access may be attributed incorrectly.

CVE•added 2024/10/28 9:15 p.m.•37 views

CVE-2024-40855

The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS Sequoia 15, macOS Sonoma 14.7.1. A sandboxed app may be able to access sensitive user data.

5.5CVSS5.4AI score0.0003EPSS

5.5CVSS6.3AI score0.0003EPSS

CVE-2024-40859

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15. An app may be able to access user-sensitive data.

10CVSS6.2AI score0.00361EPSS

CVE-2024-44146

A logic issue was addressed with improved file handling. This issue is fixed in macOS Sequoia 15. An app may be able to break out of its sandbox.

7.5CVSS6.2AI score0.00179EPSS

CVE-2024-44152

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sequoia 15. An app may be able to access user-sensitive data.

CVE•added 2024/12/12 2:15 a.m.•37 views

CVE-2024-54490

This issue was addressed by enabling hardened runtime. This issue is fixed in macOS Sequoia 15.2. A local attacker may gain access to user's Keychain items.

5.5CVSS6.3AI score0.00014EPSS

CVE•added 2025/01/27 10:15 p.m.•37 views

CVE-2024-54541

This issue was addressed through improved state management. This issue is fixed in macOS Ventura 13.7.2, visionOS 2.2, tvOS 18.2, watchOS 11.2, iOS 18.2 and iPadOS 18.2, macOS Sonoma 14.7.2, macOS Sequoia 15.2. An app may be able to access user-sensitive data.

5.5CVSS5.9AI score0.0003EPSS

CVE•added 2025/01/27 10:15 p.m.•37 views

CVE-2024-54557

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Sonoma 14.7.2, macOS Sequoia 15.2, macOS Ventura 13.7.2. An attacker may gain access to protected parts of the file system.

7.5CVSS6.1AI score0.00109EPSS

CVE•added 2025/03/10 7:15 p.m.•37 views

CVE-2024-54560

A logic issue was addressed with improved checks. This issue is fixed in iOS 18 and iPadOS 18, watchOS 11, tvOS 18, macOS Sequoia 15. A malicious app may be able to modify other apps without having App Management permission.

5.5CVSS5.6AI score0.0002EPSS

5.5CVSS5.8AI score0.00014EPSS

CVE-2025-24155

The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.3, macOS Ventura 13.7.6, macOS Sonoma 14.7.6. An app may be able to disclose kernel memory.

7.8CVSS6.4AI score0.00012EPSS

CVE-2025-24258

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.4, macOS Ventura 13.7.6, macOS Sonoma 14.7.6. An app may be able to gain root privileges.

5.5CVSS5.9AI score0.00013EPSS

CVE-2025-30440

The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.6, macOS Sequoia 15.5, macOS Sonoma 14.7.6. An app may be able to bypass ASLR.

5.5CVSS6AI score0.00015EPSS

CVE-2025-31196

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iPadOS 17.7.7, macOS Ventura 13.7.6, macOS Sonoma 14.7.6. Processing a maliciously crafted file may lead to a denial-of-service or potentially disclose memory contents.

6.3CVSS5.6AI score0.0006EPSS

CVE-2025-31209

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in watchOS 11.5, macOS Sonoma 14.7.6, tvOS 18.5, iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, macOS Ventura 13.7.6. Parsing a file may lead to disclosure of user information.

CVE•added 2025/05/29 10:15 p.m.•37 views

CVE-2025-31231

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.4. An app may be able to read sensitive location information.

5.5CVSS5.9AI score0.00018EPSS