Apple Macos Sequoia vulnerabilities

CVE-2025-24195 [CRITICAL] CVE-2025-24195: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24195 Component: Libinfo Impact: A user may be able to elevate privileges Description: An integer overflow was addressed with improved input validation.

CVE-2025-30461 [CRITICAL] CVE-2025-30461: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-30461 Component: Foundation Impact: An app may be able to access protected user data Description: An access issue was addressed with additional sandbox restrictions on the system pasteboards.

CVE-2025-24249 [CRITICAL] CVE-2025-24249: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24249 Component: Installer Impact: An app may be able to check the existence of an arbitrary path on the file system Description: A permissions issue was addressed with additional sandbox restrictions.

CVE-2025-30433 [CRITICAL] CVE-2025-30433: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-30433 Component: Shortcuts Impact: A shortcut may be able to access files that are normally inaccessible to the Shortcuts app Description: This issue was addressed with improved access restrictions.

CVE-2025-24211 [CRITICAL] CVE-2025-24211: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24211 Component: CoreMedia Impact: Processing a maliciously crafted video file may lead to unexpected app termination or corrupt process memory Description: This issue was addressed with improved memory handling.

CVE-2025-24232 [CRITICAL] CVE-2025-24232: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24232 Component: NSDocument Impact: A malicious app may be able to access arbitrary files Description: This issue was addressed through improved state management.

CVE-2025-24247 [CRITICAL] CVE-2025-24247: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24247 Component: WindowServer Impact: An attacker may be able to cause unexpected app termination Description: A type confusion issue was addressed with improved checks.

CVE-2025-24245 [CRITICAL] CVE-2025-24245: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24245 Component: Authentication Services Impact: A malicious app may be able to access a user's saved passwords Description: This issue was addressed by adding a delay between verification code attempts.

CVE-2025-24093 [CRITICAL] CVE-2025-24093: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24093 Component: Sandbox Impact: An app may be able to access removable volumes without user consent Description: A permissions issue was addressed with additional restrictions.

CVE-2025-24237 [CRITICAL] CVE-2025-24237: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24237 Component: BiometricKit Impact: An app may be able to cause unexpected system termination Description: A buffer overflow was addressed with improved bounds checking.

CVE-2025-24167 [CRITICAL] CVE-2025-24167: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24167 Component: Safari Impact: A download's origin may be incorrectly associated Description: This issue was addressed through improved state management.

CVE-2025-24265 [CRITICAL] CVE-2025-24265: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24265 Component: Xsan Impact: An app may be able to cause unexpected system termination Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2025-24230 [CRITICAL] CVE-2025-24230: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24230 Component: CoreAudio Impact: Playing a malicious audio file may lead to an unexpected app termination Description: An out-of-bounds read issue was addressed with improved input validation.

CVE-2025-24253 [CRITICAL] CVE-2025-24253: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24253 Component: StorageKit Impact: An app may be able to access protected user data Description: This issue was addressed with improved handling of symlinks.

CVE-2025-24256 [CRITICAL] CVE-2025-24256: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24256 Component: GPU Drivers Impact: An app may be able to disclose kernel memory Description: The issue was addressed with improved bounds checks.

CVE-2025-31182 [HIGH] CVE-2025-31182: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-31182 Component: CVE-2024-56171 Impact: An app may be able to break out of its sandbox Description: This issue was addressed through improved state management.

CVE-2025-30442 [HIGH] CVE-2025-30442: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-30442 Component: Software Update Impact: An app may be able to gain elevated privileges Description: The issue was addressed with improved input sanitization.

CVE-2025-24234 [HIGH] CVE-2025-24234: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24234 Component: AccountPolicy Impact: A malicious app may be able to gain root privileges Description: This issue was addressed by removing the vulnerable code.

CVE-2025-30471 [HIGH] CVE-2025-30471: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-30471 Component: Security Impact: A remote user may be able to cause a denial-of-service Description: A validation issue was addressed with improved logic.

CVE-2025-24258 [HIGH] CVE-2025-24258: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24258 Component: DiskArbitration Impact: An app may be able to gain root privileges Description: A permissions issue was addressed with additional restrictions.