Macos Security Vulnerabilities and Issues — Page 6 of Macos CVE List

Lucene search

AppleMacos

331 matches found

CVE•added 2025/03/31 11:15 p.m.•46 views

CVE-2024-54533

A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Ventura 13.7.5, macOS Sonoma 14.7.5. An app may be able to access sensitive user data.

7CVSS5.9AI score0.00051EPSS

CVE•added 2025/03/17 8:15 p.m.•46 views

CVE-2024-54565

The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.2. An app may be able to access sensitive user data.

6.2CVSS5.7AI score0.00025EPSS

CVE•added 2025/01/27 10:15 p.m.•46 views

CVE-2025-24101

This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Sequoia 15.3. An app may be able to access user-sensitive data.

5.5CVSS5.8AI score0.00017EPSS

CVE•added 2025/05/12 10:15 p.m.•46 views

CVE-2025-31241

A double free issue was addressed with improved memory management. This issue is fixed in watchOS 11.5, macOS Sonoma 14.7.6, tvOS 18.5, iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, macOS Ventura 13.7.6. A remote attacker may cause an unexpected app termination.

5.3CVSS6.1AI score0.00131EPSS

CVE•added 2025/05/12 10:15 p.m.•46 views

CVE-2025-31244

A file quarantine bypass was addressed with additional checks. This issue is fixed in macOS Sequoia 15.5. An app may be able to break out of its sandbox.

8.8CVSS5.8AI score0.00026EPSS

CVE•added 2025/05/12 10:15 p.m.•46 views

CVE-2025-31260

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.5. An app may be able to access sensitive user data.

5.5CVSS5.9AI score0.00014EPSS

CVE•added 2025/03/31 11:15 p.m.•45 views

CVE-2025-24157

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to cause unexpected system termination or corrupt kernel memory.

5.6CVSS6.1AI score0.00059EPSS

CVE•added 2025/05/12 10:15 p.m.•45 views

CVE-2025-31246

The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.5, macOS Sonoma 14.7.6. Connecting to a malicious AFP server may corrupt kernel memory.

8.8CVSS5.9AI score0.00058EPSS

CVE•added 2025/04/11 3:15 p.m.•44 views

CVE-2023-38614

A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to access sensitive user data.

4.3CVSS5.6AI score0.00028EPSS

CVE•added 2025/04/11 3:15 p.m.•44 views

CVE-2023-42969

An app may be able to break out of its sandbox. This issue is fixed in iOS 17 and iPadOS 17, iOS 16.7 and iPadOS 16.7, macOS Sonoma 14, macOS Ventura 13.6, macOS Monterey 12.7. The issue was addressed with improved handling of caches.

3.3CVSS5.9AI score0.00015EPSS

CVE•added 2025/01/27 10:15 p.m.•44 views

CVE-2025-24096

This issue was addressed through improved state management. This issue is fixed in macOS Sequoia 15.3. A malicious app may be able to access arbitrary files.

5.5CVSS6.3AI score0.00022EPSS

CVE•added 2025/01/27 10:15 p.m.•44 views

CVE-2025-24117

This issue was addressed with improved redaction of sensitive information. This issue is fixed in iPadOS 17.7.4, visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3. An app may be able to fingerprint the user.

5.5CVSS5.5AI score0.00019EPSS

CVE•added 2025/05/12 10:15 p.m.•44 views

CVE-2025-30448

This issue was addressed with additional entitlement checks. This issue is fixed in macOS Sonoma 14.7.6, iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, visionOS 2.5, macOS Ventura 13.7.6, macOS Sequoia 15.4. An attacker may be able to turn on sharing of an iCloud folder without authentication.

9.1CVSS5.8AI score0.00149EPSS

CVE•added 2025/05/12 10:15 p.m.•44 views

CVE-2025-31239

A use-after-free issue was addressed with improved memory management. This issue is fixed in watchOS 11.5, macOS Sonoma 14.7.6, tvOS 18.5, iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, macOS Ventura 13.7.6. Parsing a file may lead to an unexpected app termination.

3.3CVSS5.8AI score0.00017EPSS

CVE•added 2025/05/12 10:15 p.m.•44 views

CVE-2025-31242

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in iPadOS 17.7.7, macOS Ventura 13.7.6, macOS Sequoia 15.5, macOS Sonoma 14.7.6. An app may be able to access sensitive user data.

5.5CVSS5.8AI score0.00015EPSS

CVE•added 2025/03/10 7:15 p.m.•43 views

CVE-2024-44179

This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 17.7 and iPadOS 17.7, iOS 18 and iPadOS 18, macOS Sequoia 15. An attacker with physical access to a device may be able to read contact numbers from the lock screen.

2.4CVSS5.3AI score0.0002EPSS

CVE•added 2025/01/27 10:15 p.m.•43 views

CVE-2024-54499

A use-after-free issue was addressed with improved memory management. This issue is fixed in visionOS 2.2, tvOS 18.2, watchOS 11.2, iOS 18.2 and iPadOS 18.2, macOS Sequoia 15.2. Processing a maliciously crafted image may lead to arbitrary code execution.

8.8CVSS7.1AI score0.00066EPSS

CVE•added 2025/03/31 11:15 p.m.•43 views

CVE-2025-24263

A privacy issue was addressed by moving sensitive data to a protected location. This issue is fixed in macOS Sequoia 15.4. An app may be able to observe unprotected user data.

9.8CVSS6.1AI score0.00067EPSS

CVE•added 2025/05/29 10:15 p.m.•43 views

CVE-2025-31199

A logging issue was addressed with improved data redaction. This issue is fixed in iOS 18.4 and iPadOS 18.4, visionOS 2.4, macOS Sequoia 15.4. An app may be able to access sensitive user data.

5.5CVSS5.1AI score0.00012EPSS

CVE•added 2025/05/29 10:15 p.m.•43 views

CVE-2025-31261

A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to access protected user data.

5.5CVSS6AI score0.00013EPSS

CVE•added 2025/03/10 8:15 p.m.•42 views

CVE-2022-43454

A double free issue was addressed with improved memory management. This issue is fixed in macOS Ventura 13.1, watchOS 9.2, iOS 16.2 and iPadOS 16.2, tvOS 16.2. An app may be able to execute arbitrary code with kernel privileges.

7.8CVSS7.3AI score0.00028EPSS

CVE•added 2025/03/10 7:15 p.m.•42 views

CVE-2024-54463

This issue was addressed with improved entitlements. This issue is fixed in macOS Sequoia 15. An app may be able to access removable volumes without user consent.

5.5CVSS5.9AI score0.0003EPSS

CVE•added 2025/01/27 10:15 p.m.•42 views

CVE-2024-54488

A logic issue was addressed with improved file handling. This issue is fixed in macOS Ventura 13.7.2, iOS 18.2 and iPadOS 18.2, iPadOS 17.7.3, macOS Sonoma 14.7.2, macOS Sequoia 15.2. Photos in the Hidden Photos Album may be viewed without authentication.

5.3CVSS5.8AI score0.00126EPSS

CVE•added 2025/03/10 7:15 p.m.•42 views

CVE-2024-54558

A clickjacking issue was addressed with improved out-of-process view handling. This issue is fixed in iOS 18 and iPadOS 18, macOS Sequoia 15. An app may be able to trick a user into granting access to photos from the user's photo library.

2.8CVSS5.4AI score0.00008EPSS

CVE•added 2025/03/17 8:15 p.m.•42 views

CVE-2024-54559

The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.2. An app may be able to access sensitive user data.

5.5CVSS5.7AI score0.00025EPSS

CVE•added 2025/05/12 10:15 p.m.•42 views

CVE-2025-31217

The issue was addressed with improved input validation. This issue is fixed in watchOS 11.5, tvOS 18.5, iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, Safari 18.5. Processing maliciously crafted web content may lead to an unexpected Safari crash.

6.5CVSS5.8AI score0.00143EPSS

CVE•added 2025/05/12 10:15 p.m.•42 views

CVE-2025-31222

A correctness issue was addressed with improved checks. This issue is fixed in watchOS 11.5, macOS Sonoma 14.7.6, tvOS 18.5, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, macOS Ventura 13.7.6. A user may be able to elevate privileges.

7.8CVSS5.6AI score0.00015EPSS

CVE•added 2025/05/12 10:15 p.m.•42 views

CVE-2025-31245

The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.7.6, tvOS 18.5, iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, macOS Ventura 13.7.6. An app may be able to cause unexpected system termination.

5.5CVSS5.6AI score0.00016EPSS

CVE•added 2025/05/29 10:15 p.m.•42 views

CVE-2025-31263

The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.4. An app may be able to corrupt coprocessor memory.

9.1CVSS5.9AI score0.0006EPSS

CVE•added 2025/04/11 3:15 p.m.•41 views

CVE-2023-42981

Processing a file may lead to a denial-of-service or potentially disclose memory contents. This issue is fixed in macOS 14. The issue was addressed with improved checks.

5.4CVSS6.1AI score0.00088EPSS

CVE•added 2025/01/27 10:15 p.m.•41 views

CVE-2024-54517

The issue was addressed with improved bounds checks. This issue is fixed in macOS Sequoia 15.2, watchOS 11.2, tvOS 18.2, iOS 18.2 and iPadOS 18.2. An app may be able to corrupt coprocessor memory.

7.8CVSS5.7AI score0.00029EPSS

CVE•added 2025/05/12 10:15 p.m.•41 views

CVE-2025-31256

The issue was addressed with improved handling of caches. This issue is fixed in macOS Sequoia 15.5. Hot corner may unexpectedly reveal a user’s deleted notes.

5.5CVSS6AI score0.00019EPSS

CVE•added 2025/05/12 10:15 p.m.•41 views

CVE-2025-31259

The issue was addressed with improved input sanitization. This issue is fixed in macOS Sequoia 15.5. An app may be able to gain elevated privileges.

7.8CVSS5.9AI score0.0003EPSS

CVE•added 2025/04/11 3:15 p.m.•40 views

CVE-2023-41076

An app may be able to elevate privileges. This issue is fixed in macOS 14. This issue was addressed by removing the vulnerable code.

7.3CVSS6AI score0.0004EPSS

CVE•added 2025/03/10 7:15 p.m.•40 views

CVE-2024-54469

The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7, macOS Sequoia 15, macOS Sonoma 14.7, visionOS 2, iOS 18 and iPadOS 18. A local user may be able to leak sensitive user information.

5.5CVSS5.2AI score0.00015EPSS

CVE•added 2025/01/27 10:15 p.m.•40 views

CVE-2024-54516

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sonoma 14.7.2, macOS Sequoia 15.2. An app may be able to approve a launch daemon without user consent.

3.3CVSS6.1AI score0.00015EPSS

CVE•added 2025/05/12 10:15 p.m.•40 views

CVE-2025-24111

A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Sequoia 15.3, visionOS 2.3, iPadOS 17.7.7, watchOS 11.3, macOS Sonoma 14.7.5, iOS 18.3 and iPadOS 18.3, tvOS 18.3, macOS Ventura 13.7.5. An app may be able to cause unexpected system termination.

5.5CVSS5.9AI score0.00012EPSS

CVE•added 2025/05/12 10:15 p.m.•40 views

CVE-2025-31218

This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.5. An app may be able to observe the hostnames of new network connections.

6.2CVSS6.2AI score0.00019EPSS

CVE•added 2025/05/12 10:15 p.m.•40 views

CVE-2025-31234

The issue was addressed with improved input sanitization. This issue is fixed in visionOS 2.5, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, tvOS 18.5. An attacker may be able to cause unexpected system termination or corrupt kernel memory.

8.2CVSS5.7AI score0.00066EPSS

CVE•added 2025/05/12 10:15 p.m.•40 views

CVE-2025-31237

This issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.6, macOS Sequoia 15.5, macOS Sonoma 14.7.6. Mounting a maliciously crafted AFP network share may lead to system termination.

7.5CVSS6AI score0.0006EPSS

CVE•added 2025/03/10 7:15 p.m.•39 views

CVE-2024-44227

The issue was addressed with improved memory handling. This issue is fixed in iOS 18 and iPadOS 18, macOS Sequoia 15. An app may be able to cause unexpected system termination or corrupt kernel memory.

7.5CVSS5.7AI score0.00034EPSS

CVE•added 2025/03/10 7:15 p.m.•39 views

CVE-2024-54546

The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15. An app may be able to cause unexpected system termination or corrupt kernel memory.

7.5CVSS6AI score0.00059EPSS

CVE•added 2025/05/12 10:15 p.m.•39 views

CVE-2025-31240

7.5CVSS6AI score0.0012EPSS

CVE•added 2025/05/29 10:15 p.m.•39 views

CVE-2025-31264

An authentication issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An attacker with physical access to a locked device may be able to view sensitive user information.

4.6CVSS5.4AI score0.00041EPSS

CVE•added 2025/01/27 10:15 p.m.•38 views

CVE-2024-54518

The issue was addressed with improved bounds checks. This issue is fixed in macOS Sequoia 15.2, watchOS 11.2, tvOS 18.2, iOS 18.2 and iPadOS 18.2. An app may be able to corrupt coprocessor memory.

5.3CVSS5.7AI score0.00024EPSS

CVE•added 2025/01/27 10:15 p.m.•38 views

CVE-2024-54522

The issue was addressed with improved bounds checks. This issue is fixed in macOS Sequoia 15.2, watchOS 11.2, tvOS 18.2, iOS 18.2 and iPadOS 18.2. An app may be able to corrupt coprocessor memory.

7.8CVSS5.7AI score0.00035EPSS

CVE•added 2025/01/27 10:15 p.m.•38 views

CVE-2024-54536

The issue was addressed with improved validation of environment variables. This issue is fixed in macOS Sequoia 15.2. An app may be able to edit NVRAM variables.

5.5CVSS6AI score0.00021EPSS

CVE•added 2025/01/27 10:15 p.m.•38 views

CVE-2025-24087

The issue was addressed with additional permissions checks. This issue is fixed in macOS Sequoia 15.3. An app may be able to access protected user data.

5.5CVSS6AI score0.0002EPSS

CVE•added 2025/05/29 10:15 p.m.•38 views

CVE-2025-31189

A file quarantine bypass was addressed with additional checks. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to break out of its sandbox.

8.2CVSS6.2AI score0.00016EPSS

CVE•added 2025/05/12 10:15 p.m.•38 views

CVE-2025-31212

This issue was addressed through improved state management. This issue is fixed in watchOS 11.5, tvOS 18.5, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5. An app may be able to access sensitive user data.

5.5CVSS5.7AI score0.00015EPSS

Total number of security vulnerabilities331