Apple Macos Sequoia vulnerabilities

CVE-2025-43394 [MEDIUM] CVE-2025-43394: macOS Sequoia 15.7.2 Apple Security Update: About the security content of macOS Sequoia 15.7.2 Product: macOS Sequoia Version: 15.7.2 CVE: CVE-2025-43394 Component: Audio Impact: An attacker with physical access to an unlocked device paired with a Mac may be able to view sensitive user information in system logging Description: A logging issue was addressed with improved data redaction.

CVE-2025-43380 [MEDIUM] CVE-2025-43380: macOS Sequoia 15.7.2 Apple Security Update: About the security content of macOS Sequoia 15.7.2 Product: macOS Sequoia Version: 15.7.2 CVE: CVE-2025-43380 Component: Shortcuts Impact: An app may be able to access sensitive user data Description: This issue was addressed with additional entitlement checks.

CVE-2025-43498 [MEDIUM] CVE-2025-43498: macOS Sequoia 15.7.2 Apple Security Update: About the security content of macOS Sequoia 15.7.2 Product: macOS Sequoia Version: 15.7.2 CVE: CVE-2025-43498 Component: FileProvider Impact: An app may be able to access sensitive user data Description: An authorization issue was addressed with improved state management.

CVE-2025-43377 [MEDIUM] CVE-2025-43377: macOS Sequoia 15.7.2 Apple Security Update: About the security content of macOS Sequoia 15.7.2 Product: macOS Sequoia Version: 15.7.2 CVE: CVE-2025-43377 Component: Model I/O Impact: An app may be able to cause a denial-of-service Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2025-43446 [MEDIUM] CVE-2025-43446: macOS Sequoia 15.7.2 Apple Security Update: About the security content of macOS Sequoia 15.7.2 Product: macOS Sequoia Version: 15.7.2 CVE: CVE-2025-43446 Component: Assets Impact: An app may be able to modify protected parts of the file system Description: This issue was addressed with improved validation of symlinks.

CVE-2025-43469 [MEDIUM] CVE-2025-43469: macOS Sequoia 15.7.2 Apple Security Update: About the security content of macOS Sequoia 15.7.2 Product: macOS Sequoia Version: 15.7.2 CVE: CVE-2025-43469 Component: AppleMobileFileIntegrity Impact: An app may be able to access sensitive user data Description: A permissions issue was addressed with additional restrictions.

CVE-2025-43414 [MEDIUM] CVE-2025-43414: macOS Sequoia 15.7.2 Apple Security Update: About the security content of macOS Sequoia 15.7.2 Product: macOS Sequoia Version: 15.7.2 CVE: CVE-2025-43414 Component: Shortcuts Impact: A shortcut may be able to access files that are normally inaccessible to the Shortcuts app Description: A permissions issue was addressed with improved validation.

CVE-2025-43379 [MEDIUM] CVE-2025-43379: macOS Sequoia 15.7.2 Apple Security Update: About the security content of macOS Sequoia 15.7.2 Product: macOS Sequoia Version: 15.7.2 CVE: CVE-2025-43379 Component: AppleMobileFileIntegrity Impact: An app may be able to access protected user data Description: This issue was addressed with improved validation of symlinks.

CVE-2025-43322 [MEDIUM] CVE-2025-43322: macOS Sequoia 15.7.2 Apple Security Update: About the security content of macOS Sequoia 15.7.2 Product: macOS Sequoia Version: 15.7.2 CVE: CVE-2025-43322 Component: Admin Framework Impact: An app may be able to access user-sensitive data Description: A logic issue was addressed with improved checks.

CVE-2025-43445 [MEDIUM] CVE-2025-43445: macOS Sequoia 15.7.2 Apple Security Update: About the security content of macOS Sequoia 15.7.2 Product: macOS Sequoia Version: 15.7.2 CVE: CVE-2025-43445 Component: CoreText Impact: Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory Description: An out-of-bounds read was addressed with improved input validation.

CVE-2025-43390 [MEDIUM] CVE-2025-43390: macOS Sequoia 15.7.2 Apple Security Update: About the security content of macOS Sequoia 15.7.2 Product: macOS Sequoia Version: 15.7.2 CVE: CVE-2025-43390 Component: AppleMobileFileIntegrity Impact: An app may be able to access user-sensitive data Description: A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions.

CVE-2025-43477 [MEDIUM] CVE-2025-43477: macOS Sequoia 15.7.2 Apple Security Update: About the security content of macOS Sequoia 15.7.2 Product: macOS Sequoia Version: 15.7.2 CVE: CVE-2025-43477 Component: Siri Impact: An app may be able to access sensitive user data Description: A privacy issue was addressed with improved private data redaction for log entries.

CVE-2025-43468 [MEDIUM] CVE-2025-43468: macOS Sequoia 15.7.2 Apple Security Update: About the security content of macOS Sequoia 15.7.2 Product: macOS Sequoia Version: 15.7.2 CVE: CVE-2025-43468 Component: AppleMobileFileIntegrity Impact: An app may be able to access sensitive user data Description: A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions.

CVE-2025-43334 [MEDIUM] CVE-2025-43334: macOS Sequoia 15.7.2 Apple Security Update: About the security content of macOS Sequoia 15.7.2 Product: macOS Sequoia Version: 15.7.2 CVE: CVE-2025-43334 Component: Spotlight Impact: An app may be able to access sensitive user data Description: A permissions issue was addressed with additional sandbox restrictions.

CVE-2025-43383 [MEDIUM] CVE-2025-43383: macOS Sequoia 15.7.2 Apple Security Update: About the security content of macOS Sequoia 15.7.2 Product: macOS Sequoia Version: 15.7.2 CVE: CVE-2025-43383 Component: Model I/O Impact: Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory Description: An out-of-bounds access issue was addressed with improved bounds checking.

CVE-2024-43398 [MEDIUM] CVE-2024-43398: macOS Sequoia 15.7.2 Apple Security Update: About the security content of macOS Sequoia 15.7.2 Product: macOS Sequoia Version: 15.7.2 CVE: CVE-2024-43398 Component: CVE-2024-43398

CVE-2025-43378 [MEDIUM] CVE-2025-43378: macOS Sequoia 15.7.2 Apple Security Update: About the security content of macOS Sequoia 15.7.2 Product: macOS Sequoia Version: 15.7.2 CVE: CVE-2025-43378 Component: AppleMobileFileIntegrity Impact: An app may be able to access sensitive user data Description: A permissions issue was addressed with additional restrictions.

CVE-2025-43336 [MEDIUM] CVE-2025-43336: macOS Sequoia 15.7.2 Apple Security Update: About the security content of macOS Sequoia 15.7.2 Product: macOS Sequoia Version: 15.7.2 CVE: CVE-2025-43336 Component: SoftwareUpdate Impact: An app with root privileges may be able to access private information Description: A permissions issue was addressed with additional restrictions.

CVE-2025-43389 [MEDIUM] CVE-2025-43389: macOS Sequoia 15.7.2 Apple Security Update: About the security content of macOS Sequoia 15.7.2 Product: macOS Sequoia Version: 15.7.2 CVE: CVE-2025-43389 Component: Notes Impact: An app may be able to access sensitive user data Description: A privacy issue was addressed by removing the vulnerable code.

CVE-2025-43408 [LOW] CVE-2025-43408: macOS Sequoia 15.7.2 Apple Security Update: About the security content of macOS Sequoia 15.7.2 Product: macOS Sequoia Version: 15.7.2 CVE: CVE-2025-43408 Component: Share Sheet Impact: An attacker with physical access may be able to access contacts from the lock screen Description: This issue was addressed by restricting options offered on a locked device.