Apple Macos Sequoia vulnerabilities

CVE-2025-30443 [MEDIUM] CVE-2025-30443: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-30443 Component: AppleMobileFileIntegrity Impact: An app may be able to access user-sensitive data Description: A privacy issue was addressed by removing the vulnerable code.

CVE-2025-24278 [MEDIUM] CVE-2025-24278: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24278 Component: System Settings Impact: An app may be able to access protected user data Description: This issue was addressed with improved validation of symlinks.

CVE-2025-24279 [MEDIUM] CVE-2025-24279: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24279 Component: Voice Control Impact: An app may be able to access contacts Description: This issue was addressed with improved file handling.

CVE-2025-31203 [MEDIUM] CVE-2025-31203: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-31203 Component: CoreUtils Impact: An attacker on the local network may be able to cause a denial-of-service Description: An integer overflow was addressed with improved input validation.

CVE-2025-31192 [MEDIUM] CVE-2025-31192: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-31192 Component: Safari Impact: A website may be able to access sensor information without user consent Description: The issue was addressed with improved checks.

CVE-2025-24097 [MEDIUM] CVE-2025-24097: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24097 Component: AirDrop Impact: An app may be able to read arbitrary file metadata Description: A permissions issue was addressed with additional restrictions.

CVE-2025-31198 [MEDIUM] CVE-2025-31198: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-31198 Component: Xsan Impact: An app may be able to cause unexpected system termination or corrupt kernel memory Description: A buffer overflow issue was addressed with improved memory handling.

CVE-2025-24205 [MEDIUM] CVE-2025-24205: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24205 Component: Siri Impact: An app may be able to access user-sensitive data Description: An authorization issue was addressed with improved state management.

CVE-2025-31264 [MEDIUM] CVE-2025-31264: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-31264 Component: Logging Impact: An app may be able to access sensitive user data Description: A logging issue was addressed with improved data redaction.

CVE-2025-24242 [MEDIUM] CVE-2025-24242: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24242 Component: System Settings Impact: An app with root privileges may be able to access private information Description: This issue was addressed with improved handling of symlinks.

CVE-2025-31191 [MEDIUM] CVE-2025-31191: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-31191 Component: CoreServices Impact: An app may be able to access sensitive user data Description: This issue was addressed through improved state management.

CVE-2025-24235 [MEDIUM] CVE-2025-24235: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24235 Component: Kerberos Helper Impact: A remote attacker may be able to cause unexpected app termination or heap corruption Description: A memory initialization issue was addressed with improved memory handling.

CVE-2025-24271 [MEDIUM] CVE-2025-24271: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24271 Component: AirPlay Impact: An unauthenticated user on the same network as a signed-in Mac could send it AirPlay commands without pairing Description: An access issue was addressed with improved access restrictions.

CVE-2025-24194 [MEDIUM] CVE-2025-24194: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24194 Component: Libinfo Impact: A user may be able to elevate privileges Description: An integer overflow was addressed with improved input validation.

CVE-2025-24182 [MEDIUM] CVE-2025-24182: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24182 Component: CoreText Impact: Processing a maliciously crafted font may result in the disclosure of process memory Description: An out-of-bounds read issue was addressed with improved input validation.

CVE-2025-31196 [MEDIUM] CVE-2025-31196: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-31196 Component: CoreGraphics Impact: Processing a maliciously crafted file may lead to a denial-of-service or potentially disclose memory contents Description: An out-of-bounds read was addressed with improved input validation.

CVE-2025-24218 [MEDIUM] CVE-2025-24218: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24218 Component: Summarization Services Impact: An app may be able to access information about a user's contacts Description: A privacy issue was addressed with improved private data redaction for log entries.

CVE-2025-24251 [MEDIUM] CVE-2025-24251: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24251 Component: AirPlay Impact: An attacker on the local network may cause an unexpected app termination Description: The issue was addressed with improved checks.

CVE-2025-30470 [MEDIUM] CVE-2025-30470: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-30470 Component: Maps Impact: An app may be able to read sensitive location information Description: A path handling issue was addressed with improved logic.

CVE-2025-30463 [MEDIUM] CVE-2025-30463: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-30463 Component: Handoff Impact: An app may be able to access sensitive user data Description: The issue was addressed with improved restriction of data container access.