Apple Macos Sequoia vulnerabilities

CVE-2025-24157 [MEDIUM] CVE-2025-24157: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24157 Component: Xsan Impact: An app may be able to cause unexpected system termination or corrupt kernel memory Description: A buffer overflow issue was addressed with improved memory handling.

CVE-2025-24192 [MEDIUM] CVE-2025-24192: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24192 Component: Web Extensions Impact: Visiting a website may leak sensitive data Description: A script imports issue was addressed with improved isolation.

CVE-2025-24248 [MEDIUM] CVE-2025-24248: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24248 Component: Siri Impact: An app may be able to enumerate devices that have signed into the user's Apple Account Description: A permissions issue was addressed with additional restrictions.

CVE-2025-43205 [MEDIUM] CVE-2025-43205: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-43205 Component: Audio Impact: An app may be able to bypass ASLR Description: An out-of-bounds access issue was addressed with improved bounds checking.

CVE-2025-24210 [MEDIUM] CVE-2025-24210: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24210 Component: ImageIO Impact: Parsing an image may lead to disclosure of user information Description: A logic error was addressed with improved error handling.

CVE-2025-31202 [MEDIUM] CVE-2025-31202: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-31202 Component: AirPlay Impact: An attacker on the local network may be able to cause a denial-of-service Description: A null pointer dereference was addressed with improved input validation.

CVE-2025-24262 [MEDIUM] CVE-2025-24262: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24262 Component: Notes Impact: A sandboxed app may be able to access sensitive user data in system logs Description: A privacy issue was addressed with improved private data redaction for log entries.

CVE-2025-30455 [MEDIUM] CVE-2025-30455: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-30455 Component: Dock Impact: A malicious app may be able to access private information Description: The issue was addressed with improved checks.

CVE-2025-24148 [MEDIUM] CVE-2025-24148: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24148 Component: LaunchServices Impact: A malicious JAR file may bypass Gatekeeper checks Description: This issue was addressed with improved handling of executable types.

CVE-2025-31197 [MEDIUM] CVE-2025-31197: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-31197 Component: AirPlay Impact: An attacker on the local network may cause an unexpected app termination Description: The issue was addressed with improved checks.

CVE-2025-30445 [MEDIUM] CVE-2025-30445: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-30445 Component: AirPlay Impact: An attacker on the local network may cause an unexpected app termination Description: A type confusion issue was addressed with improved checks.

CVE-2025-31187 [MEDIUM] CVE-2025-31187: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-31187 Component: Dock Impact: An app may be able to modify protected parts of the file system Description: This issue was addressed by removing the vulnerable code.

CVE-2025-30446 [MEDIUM] CVE-2025-30446: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-30446 Component: PackageKit Impact: A malicious app with root privileges may be able to modify the contents of system files Description: A permissions issue was addressed with additional restrictions.

CVE-2025-30435 [MEDIUM] CVE-2025-30435: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-30435 Component: Siri Impact: A sandboxed app may be able to access sensitive user data in system logs Description: This issue was addressed with improved redaction of sensitive information.

CVE-2025-24280 [MEDIUM] CVE-2025-24280: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24280 Component: Shortcuts Impact: An app may be able to access user-sensitive data Description: An access issue was addressed with additional sandbox restrictions.

CVE-2025-24276 [MEDIUM] CVE-2025-24276: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24276 Component: App Store Impact: A malicious app may be able to access private information Description: This issue was addressed by removing the vulnerable code.

CVE-2025-31199 [MEDIUM] CVE-2025-31199: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-31199 Component: Logging Impact: An app may be able to access sensitive user data Description: A logging issue was addressed with improved data redaction.

CVE-2025-30450 [MEDIUM] CVE-2025-30450: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-30450 Component: Mail Impact: "Block All Remote Content" may not apply for all mail previews Description: A permissions issue was addressed with additional sandbox restrictions.

CVE-2025-24198 [MEDIUM] CVE-2025-24198: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24198 Component: Siri Impact: An attacker with physical access may be able to use Siri to access sensitive user data Description: This issue was addressed by restricting options offered on a locked device.

CVE-2025-24217 [MEDIUM] CVE-2025-24217: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24217 Component: Siri Impact: An app may be able to access sensitive user data Description: This issue was addressed with improved redaction of sensitive information.