Apple Macos Sequoia vulnerabilities

CVE-2025-24239 [MEDIUM] CVE-2025-24239: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-24239 Component: AppleMobileFileIntegrity Impact: An app may be able to access protected user data Description: A downgrade issue was addressed with additional code-signing restrictions.

CVE-2025-27113 [LOW] CVE-2025-27113: macOS Sequoia 15.4 Apple Security Update: About the security content of macOS Sequoia 15.4 Product: macOS Sequoia Version: 15.4 CVE: CVE-2025-27113 Component: CVE-2025-27113

CVE-2025-24201 [CRITICAL] CVE-2025-24201: macOS Sequoia 15.3.2 Apple Security Update: About the security content of macOS Sequoia 15.3.2 Product: macOS Sequoia Version: 15.3.2 CVE: CVE-2025-24201 Component: WebKit Impact: Maliciously crafted web content may be able to break out of Web Content sandbox. This is a supplementary fix for an attack that was blocked in iOS 17.2. (Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific tar

CVE-2025-43200 [MEDIUM] CVE-2025-43200: macOS Sequoia 15.3.1 Apple Security Update: About the security content of macOS Sequoia 15.3.1 Product: macOS Sequoia Version: 15.3.1 CVE: CVE-2025-43200 Component: Messages Impact: A logic issue existed when processing a maliciously crafted photo or video shared via an iCloud Link. Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals. Description: This issue was addre

CVE-2025-24102 [CRITICAL] CVE-2025-24102: macOS Sequoia 15.3 Apple Security Update: About the security content of macOS Sequoia 15.3 Product: macOS Sequoia Version: 15.3 CVE: CVE-2025-24102 Component: CoreRoutine Impact: An app may be able to determine a user’s current location Description: The issue was addressed with improved checks.

CVE-2025-24154 [CRITICAL] CVE-2025-24154: macOS Sequoia 15.3 Apple Security Update: About the security content of macOS Sequoia 15.3 Product: macOS Sequoia Version: 15.3 CVE: CVE-2025-24154 Component: WebContentFilter Impact: An attacker may be able to cause unexpected system termination or corrupt kernel memory Description: An out-of-bounds write was addressed with improved input validation.

CVE-2025-24085 [CRITICAL] CVE-2025-24085: macOS Sequoia 15.3 Apple Security Update: About the security content of macOS Sequoia 15.3 Product: macOS Sequoia Version: 15.3 CVE: CVE-2025-24085 Component: CVE-2025-24085

CVE-2025-24146 [CRITICAL] CVE-2025-24146: macOS Sequoia 15.3 Apple Security Update: About the security content of macOS Sequoia 15.3 Product: macOS Sequoia Version: 15.3 CVE: CVE-2025-24146 Component: Photos Storage Impact: Deleting a conversation in Messages may expose user contact information in system logging Description: This issue was addressed with improved redaction of sensitive information.

CVE-2025-24107 [HIGH] CVE-2025-24107: macOS Sequoia 15.3 Apple Security Update: About the security content of macOS Sequoia 15.3 Product: macOS Sequoia Version: 15.3 CVE: CVE-2025-24107 Component: Kernel Impact: A malicious app may be able to gain root privileges Description: A permissions issue was addressed with additional restrictions.

CVE-2025-24118 [HIGH] CVE-2025-24118: macOS Sequoia 15.3 Apple Security Update: About the security content of macOS Sequoia 15.3 Product: macOS Sequoia Version: 15.3 CVE: CVE-2025-24118 Component: Kernel Impact: An app may be able to cause unexpected system termination or write kernel memory Description: The issue was addressed with improved memory handling.

CVE-2025-24159 [HIGH] CVE-2025-24159: macOS Sequoia 15.3 Apple Security Update: About the security content of macOS Sequoia 15.3 Product: macOS Sequoia Version: 15.3 CVE: CVE-2025-24159 Component: Kernel Impact: An app may be able to execute arbitrary code with kernel privileges Description: A validation issue was addressed with improved logic.

CVE-2025-24855 [HIGH] CVE-2025-24855: macOS Sequoia 15.3 Apple Security Update: About the security content of macOS Sequoia 15.3 Product: macOS Sequoia Version: 15.3 CVE: CVE-2025-24855 Component: LaunchServices Impact: An app may be able to fingerprint the user Description: This issue was addressed with improved redaction of sensitive information.

CVE-2025-24156 [HIGH] CVE-2025-24156: macOS Sequoia 15.3 Apple Security Update: About the security content of macOS Sequoia 15.3 Product: macOS Sequoia Version: 15.3 CVE: CVE-2025-24156 Component: Xsan Impact: An app may be able to elevate privileges Description: An integer overflow was addressed through improved input validation.

CVE-2024-55549 [HIGH] CVE-2024-55549: macOS Sequoia 15.3 Apple Security Update: About the security content of macOS Sequoia 15.3 Product: macOS Sequoia Version: 15.3 CVE: CVE-2024-55549 Component: LaunchServices Impact: An app may be able to fingerprint the user Description: This issue was addressed with improved redaction of sensitive information.

CVE-2025-24189 [HIGH] CVE-2025-24189: macOS Sequoia 15.3 Apple Security Update: About the security content of macOS Sequoia 15.3 Product: macOS Sequoia Version: 15.3 CVE: CVE-2025-24189 Component: WebKit Impact: Processing maliciously crafted web content may lead to memory corruption Description: The issue was addressed with improved checks.

CVE-2025-24150 [HIGH] CVE-2025-24150: macOS Sequoia 15.3 Apple Security Update: About the security content of macOS Sequoia 15.3 Product: macOS Sequoia Version: 15.3 CVE: CVE-2025-24150 Component: WebKit Web Inspector Impact: Copying a URL from Web Inspector may lead to command injection Description: A privacy issue was addressed with improved handling of files.

CVE-2025-24137 [HIGH] CVE-2025-24137: macOS Sequoia 15.3 Apple Security Update: About the security content of macOS Sequoia 15.3 Product: macOS Sequoia Version: 15.3 CVE: CVE-2025-24137 Component: AirPlay Impact: An attacker on the local network may corrupt process memory Description: A type confusion issue was addressed with improved checks.

CVE-2025-24120 [HIGH] CVE-2025-24120: macOS Sequoia 15.3 Apple Security Update: About the security content of macOS Sequoia 15.3 Product: macOS Sequoia Version: 15.3 CVE: CVE-2025-24120 Component: WindowServer Impact: An attacker may be able to cause unexpected app termination Description: This issue was addressed by improved management of object lifetimes.

CVE-2025-24169 [HIGH] CVE-2025-24169: macOS Sequoia 15.3 Apple Security Update: About the security content of macOS Sequoia 15.3 Product: macOS Sequoia Version: 15.3 CVE: CVE-2025-24169 Component: Passwords Impact: A malicious app may be able to bypass browser extension authentication Description: A logging issue was addressed with improved data redaction.

CVE-2025-24129 [HIGH] CVE-2025-24129: macOS Sequoia 15.3 Apple Security Update: About the security content of macOS Sequoia 15.3 Product: macOS Sequoia Version: 15.3 CVE: CVE-2025-24129 Component: AirPlay Impact: An attacker on the local network may cause an unexpected app termination Description: A type confusion issue was addressed with improved checks.