Apple Macos Sequoia vulnerabilities

CVE-2025-30440 [MEDIUM] CVE-2025-30440: macOS Sequoia 15.5 Apple Security Update: About the security content of macOS Sequoia 15.5 Product: macOS Sequoia Version: 15.5 CVE: CVE-2025-30440 Component: Libinfo Impact: An app may be able to bypass ASLR Description: The issue was addressed with improved checks.

CVE-2025-31218 [MEDIUM] CVE-2025-31218: macOS Sequoia 15.5 Apple Security Update: About the security content of macOS Sequoia 15.5 Product: macOS Sequoia Version: 15.5 CVE: CVE-2025-31218 Component: NetworkExtension Impact: An app may be able to observe the hostnames of new network connections Description: This issue was addressed by removing the vulnerable code.

CVE-2025-31233 [MEDIUM] CVE-2025-31233: macOS Sequoia 15.5 Apple Security Update: About the security content of macOS Sequoia 15.5 Product: macOS Sequoia Version: 15.5 CVE: CVE-2025-31233 Component: CoreMedia Impact: Processing a maliciously crafted video file may lead to unexpected app termination or corrupt process memory Description: The issue was addressed with improved input sanitization.

CVE-2025-31239 [MEDIUM] CVE-2025-31239: macOS Sequoia 15.5 Apple Security Update: About the security content of macOS Sequoia 15.5 Product: macOS Sequoia Version: 15.5 CVE: CVE-2025-31239 Component: CoreMedia Impact: Parsing a file may lead to an unexpected app termination Description: A use-after-free issue was addressed with improved memory management.

CVE-2025-31217 [MEDIUM] CVE-2025-31217: macOS Sequoia 15.5 Apple Security Update: About the security content of macOS Sequoia 15.5 Product: macOS Sequoia Version: 15.5 CVE: CVE-2025-31217 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected Safari crash Description: The issue was addressed with improved input validation.

CVE-2025-31206 [MEDIUM] CVE-2025-31206: macOS Sequoia 15.5 Apple Security Update: About the security content of macOS Sequoia 15.5 Product: macOS Sequoia Version: 15.5 CVE: CVE-2025-31206 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected Safari crash Description: A type confusion issue was addressed with improved state handling.

CVE-2025-31205 [MEDIUM] CVE-2025-31205: macOS Sequoia 15.5 Apple Security Update: About the security content of macOS Sequoia 15.5 Product: macOS Sequoia Version: 15.5 CVE: CVE-2025-31205 Component: WebKit Impact: A malicious website may exfiltrate data cross-origin Description: The issue was addressed with improved checks.

CVE-2025-31236 [MEDIUM] CVE-2025-31236: macOS Sequoia 15.5 Apple Security Update: About the security content of macOS Sequoia 15.5 Product: macOS Sequoia Version: 15.5 CVE: CVE-2025-31236 Component: Finder Impact: An app may be able to access sensitive user data Description: An information disclosure issue was addressed with improved privacy controls.

CVE-2025-31241 [MEDIUM] CVE-2025-31241: macOS Sequoia 15.5 Apple Security Update: About the security content of macOS Sequoia 15.5 Product: macOS Sequoia Version: 15.5 CVE: CVE-2025-31241 Component: Kernel Impact: A remote attacker may cause an unexpected app termination Description: A double free issue was addressed with improved memory management.

CVE-2025-31266 [MEDIUM] CVE-2025-31266: macOS Sequoia 15.5 Apple Security Update: About the security content of macOS Sequoia 15.5 Product: macOS Sequoia Version: 15.5 CVE: CVE-2025-31266 Component: Safari Impact: A website may be able to spoof the domain name in the title of a pop-up window Description: A spoofing issue was addressed with improved truncation when displaying the fully qualified domain name

CVE-2025-31248 [MEDIUM] CVE-2025-31248: macOS Sequoia 15.5 Apple Security Update: About the security content of macOS Sequoia 15.5 Product: macOS Sequoia Version: 15.5 CVE: CVE-2025-31248 Component: UserAccountUpdater Impact: An app may be able to access sensitive user data Description: A parsing issue in the handling of directory paths was addressed with improved path validation.

CVE-2025-26465 [MEDIUM] CVE-2025-26465: macOS Sequoia 15.5 Apple Security Update: About the security content of macOS Sequoia 15.5 Product: macOS Sequoia Version: 15.5 CVE: CVE-2025-26465 Component: CVE-2025-26465

CVE-2025-31258 [MEDIUM] CVE-2025-31258: macOS Sequoia 15.5 Apple Security Update: About the security content of macOS Sequoia 15.5 Product: macOS Sequoia Version: 15.5 CVE: CVE-2025-31258 Component: RemoteViewServices Impact: An app may be able to break out of its sandbox Description: This issue was addressed by removing the vulnerable code.

CVE-2025-43374 [MEDIUM] CVE-2025-43374: macOS Sequoia 15.5 Apple Security Update: About the security content of macOS Sequoia 15.5 Product: macOS Sequoia Version: 15.5 CVE: CVE-2025-43374 Component: Wi-Fi Impact: An attacker in physical proximity may be able to cause an out-of-bounds read in kernel memory Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2025-31242 [MEDIUM] CVE-2025-31242: macOS Sequoia 15.5 Apple Security Update: About the security content of macOS Sequoia 15.5 Product: macOS Sequoia Version: 15.5 CVE: CVE-2025-31242 Component: StoreKit Impact: An app may be able to access sensitive user data Description: A privacy issue was addressed with improved private data redaction for log entries.

CVE-2025-31215 [MEDIUM] CVE-2025-31215: macOS Sequoia 15.5 Apple Security Update: About the security content of macOS Sequoia 15.5 Product: macOS Sequoia Version: 15.5 CVE: CVE-2025-31215 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: The issue was addressed with improved checks.

CVE-2025-24222 [MEDIUM] CVE-2025-24222: macOS Sequoia 15.5 Apple Security Update: About the security content of macOS Sequoia 15.5 Product: macOS Sequoia Version: 15.5 CVE: CVE-2025-24222 Component: BOM Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: The issue was addressed with improved memory handling.

CVE-2025-31245 [MEDIUM] CVE-2025-31245: macOS Sequoia 15.5 Apple Security Update: About the security content of macOS Sequoia 15.5 Product: macOS Sequoia Version: 15.5 CVE: CVE-2025-31245 Component: Pro Res Impact: An app may be able to cause unexpected system termination Description: The issue was addressed with improved checks.

CVE-2025-31209 [MEDIUM] CVE-2025-31209: macOS Sequoia 15.5 Apple Security Update: About the security content of macOS Sequoia 15.5 Product: macOS Sequoia Version: 15.5 CVE: CVE-2025-31209 Component: CoreGraphics Impact: Parsing a file may lead to disclosure of user information Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2025-31212 [MEDIUM] CVE-2025-31212: macOS Sequoia 15.5 Apple Security Update: About the security content of macOS Sequoia 15.5 Product: macOS Sequoia Version: 15.5 CVE: CVE-2025-31212 Component: Core Bluetooth Impact: An app may be able to access sensitive user data Description: This issue was addressed through improved state management.