Apple Macos Sequoia vulnerabilities

CVE-2025-24255 [HIGH] CVE-2025-24255: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24255 Component: Disk Images Impact: An app may be able to break out of its sandbox Description: A file access issue was addressed with improved input validation.

CVE-2025-30437 [HIGH] CVE-2025-30437: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-30437 Component: IOMobileFrameBuffer Impact: An app may be able to corrupt coprocessor memory Description: The issue was addressed with improved bounds checks.

CVE-2025-24252 [HIGH] CVE-2025-24252: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24252 Component: AirPlay Impact: An attacker on the local network may be able to corrupt process memory Description: A use-after-free issue was addressed with improved memory management.

CVE-2025-24254 [HIGH] CVE-2025-24254: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24254 Component: Software Update Impact: A user may be able to elevate privileges Description: This issue was addressed with improved validation of symlinks.

CVE-2025-31188 [HIGH] CVE-2025-31188: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-31188 Component: StorageKit Impact: An app may be able to bypass Privacy preferences Description: A race condition was addressed with additional validation.

CVE-2025-30449 [HIGH] CVE-2025-30449: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-30449 Component: StorageKit Impact: An app may be able to gain root privileges Description: A permissions issue was addressed with additional restrictions.

CVE-2024-48958 [HIGH] CVE-2024-48958: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2024-48958 Component: CVE-2024-48958

CVE-2025-24214 [MEDIUM] CVE-2025-24214: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24214 Component: Siri Impact: An app may be able to access sensitive user data Description: A privacy issue was addressed by not logging contents of text fields.

CVE-2025-30454 [MEDIUM] CVE-2025-30454: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-30454 Component: CoreMedia Playback Impact: A malicious app may be able to access private information Description: A path handling issue was addressed with improved validation.

CVE-2025-24216 [MEDIUM] CVE-2025-24216: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24216 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected Safari crash Description: The issue was addressed with improved memory handling.

CVE-2025-30425 [MEDIUM] CVE-2025-30425: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-30425 Component: WebKit Impact: A malicious website may be able to track users in Safari private browsing mode Description: This issue was addressed through improved state management.

CVE-2025-30467 [MEDIUM] CVE-2025-30467: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-30467 Component: Safari Impact: Visiting a malicious website may lead to address bar spoofing Description: The issue was addressed with improved checks.

CVE-2025-24163 [MEDIUM] CVE-2025-24163: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24163 Component: CoreAudio Impact: Parsing a file may lead to an unexpected app termination Description: The issue was addressed with improved checks.

CVE-2025-30427 [MEDIUM] CVE-2025-30427: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-30427 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected Safari crash Description: A use-after-free issue was addressed with improved memory management.

CVE-2025-30429 [MEDIUM] CVE-2025-30429: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-30429 Component: Calendar Impact: An app may be able to break out of its sandbox Description: A path handling issue was addressed with improved validation.

CVE-2025-24244 [MEDIUM] CVE-2025-24244: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24244 Component: Audio Impact: Processing a maliciously crafted font may result in the disclosure of process memory Description: The issue was addressed with improved memory handling.

CVE-2025-24236 [MEDIUM] CVE-2025-24236: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24236 Component: CoreMedia Impact: An app may be able to access sensitive user data Description: An access issue was addressed with additional sandbox restrictions.

CVE-2025-30438 [MEDIUM] CVE-2025-30438: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-30438 Component: Share Sheet Impact: A malicious app may be able to dismiss the system notification on the Lock Screen that a recording was started Description: This issue was addressed with improved access restrictions.

CVE-2025-24212 [MEDIUM] CVE-2025-24212: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24212 Component: Calendar Impact: An app may be able to break out of its sandbox Description: This issue was addressed with improved checks.

CVE-2025-31195 [MEDIUM] CVE-2025-31195: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-31195 Component: TCC Impact: An app may be able to break out of its sandbox Description: The issue was addressed by adding additional logic.