Apple Macos Sequoia vulnerabilities

CVE-2025-43423 [LOW] CVE-2025-43423: macOS Sequoia 15.7.2 Apple Security Update: About the security content of macOS Sequoia 15.7.2 Product: macOS Sequoia Version: 15.7.2 CVE: CVE-2025-43423 Component: Audio Impact: An attacker with physical access to an unlocked device paired with a Mac may be able to view sensitive user information in system logging Description: A logging issue was addressed with improved data redaction.

CVE-2025-43395 [LOW] CVE-2025-43395: macOS Sequoia 15.7.2 Apple Security Update: About the security content of macOS Sequoia 15.7.2 Product: macOS Sequoia Version: 15.7.2 CVE: CVE-2025-43395 Component: CloudKit Impact: An app may be able to break out of its sandbox Description: This issue was addressed with improved validation of symlinks.

CVE-2025-43410 [LOW] CVE-2025-43410: macOS Sequoia 15.7.2 Apple Security Update: About the security content of macOS Sequoia 15.7.2 Product: macOS Sequoia Version: 15.7.2 CVE: CVE-2025-43410 Component: Notes Impact: An attacker with physical access may be able to view deleted notes Description: The issue was addressed with improved handling of caches.

CVE-2025-43400 [MEDIUM] CVE-2025-43400: macOS Sequoia 15.7.1 Apple Security Update: About the security content of macOS Sequoia 15.7.1 Product: macOS Sequoia Version: 15.7.1 CVE: CVE-2025-43400 Component: FontParser Impact: Processing a maliciously crafted font may lead to unexpected app termination or corrupt process memory Description: An out-of-bounds write issue was addressed with improved bounds checking.

CVE-2024-27280 [CRITICAL] CVE-2024-27280: macOS Sequoia 15.7 Apple Security Update: About the security content of macOS Sequoia 15.7 Product: macOS Sequoia Version: 15.7 CVE: CVE-2024-27280 Component: CVE-2024-27280

CVE-2025-31255 [CRITICAL] CVE-2025-31255: macOS Sequoia 15.7 Apple Security Update: About the security content of macOS Sequoia 15.7 Product: macOS Sequoia Version: 15.7 CVE: CVE-2025-31255 Component: IOKit Impact: An app may be able to access sensitive user data Description: An authorization issue was addressed with improved state management.

CVE-2025-43359 [CRITICAL] CVE-2025-43359: macOS Sequoia 15.7 Apple Security Update: About the security content of macOS Sequoia 15.7 Product: macOS Sequoia Version: 15.7 CVE: CVE-2025-43359 Component: Kernel Impact: A UDP server socket bound to a local interface may become bound to all interfaces Description: A logic issue was addressed with improved state management.

CVE-2025-31259 [HIGH] CVE-2025-31259: macOS Sequoia 15.7 Apple Security Update: About the security content of macOS Sequoia 15.7 Product: macOS Sequoia Version: 15.7 CVE: CVE-2025-31259 Component: Screenshots Impact: An app may be able to capture a screenshot of an app entering or exiting full screen mode Description: A privacy issue was addressed with improved checks.

CVE-2025-43358 [HIGH] CVE-2025-43358: macOS Sequoia 15.7 Apple Security Update: About the security content of macOS Sequoia 15.7 Product: macOS Sequoia Version: 15.7 CVE: CVE-2025-43358 Component: Shortcuts Impact: A shortcut may be able to bypass sandbox restrictions Description: A permissions issue was addressed with additional sandbox restrictions.

CVE-2025-43304 [HIGH] CVE-2025-43304: macOS Sequoia 15.7 Apple Security Update: About the security content of macOS Sequoia 15.7 Product: macOS Sequoia Version: 15.7 CVE: CVE-2025-43304 Component: StorageKit Impact: An app may be able to gain root privileges Description: A race condition was addressed with improved state handling.

CVE-2025-43286 [HIGH] CVE-2025-43286: macOS Sequoia 15.7 Apple Security Update: About the security content of macOS Sequoia 15.7 Product: macOS Sequoia Version: 15.7 CVE: CVE-2025-43286 Component: SharedFileList Impact: An app may be able to break out of its sandbox Description: A permissions issue was addressed with additional restrictions.

CVE-2025-43330 [HIGH] CVE-2025-43330: macOS Sequoia 15.7 Apple Security Update: About the security content of macOS Sequoia 15.7 Product: macOS Sequoia Version: 15.7 CVE: CVE-2025-43330 Component: ATS Impact: An app may be able to break out of its sandbox Description: This issue was addressed by removing the vulnerable code.

CVE-2025-43298 [HIGH] CVE-2025-43298: macOS Sequoia 15.7 Apple Security Update: About the security content of macOS Sequoia 15.7 Product: macOS Sequoia Version: 15.7 CVE: CVE-2025-43298 Component: PackageKit Impact: An app may be able to gain root privileges Description: A parsing issue in the handling of directory paths was addressed with improved path validation.

CVE-2025-43364 [HIGH] CVE-2025-43364: macOS Sequoia 15.7 Apple Security Update: About the security content of macOS Sequoia 15.7 Product: macOS Sequoia Version: 15.7 CVE: CVE-2025-43364 Component: NetFSFramework Impact: An app may be able to break out of its sandbox Description: A race condition was addressed with additional validation.

CVE-2025-43305 [MEDIUM] CVE-2025-43305: macOS Sequoia 15.7 Apple Security Update: About the security content of macOS Sequoia 15.7 Product: macOS Sequoia Version: 15.7 CVE: CVE-2025-43305 Component: CoreServices Impact: A malicious app may be able to access private information Description: A logic issue was addressed with improved checks.

CVE-2025-43355 [MEDIUM] CVE-2025-43355: macOS Sequoia 15.7 Apple Security Update: About the security content of macOS Sequoia 15.7 Product: macOS Sequoia Version: 15.7 CVE: CVE-2025-43355 Component: MobileStorageMounter Impact: An app may be able to cause a denial-of-service Description: A type confusion issue was addressed with improved memory handling.

CVE-2025-43308 [MEDIUM] CVE-2025-43308: macOS Sequoia 15.7 Apple Security Update: About the security content of macOS Sequoia 15.7 Product: macOS Sequoia Version: 15.7 CVE: CVE-2025-43308 Component: Touch Bar Controls Impact: An app may be able to access sensitive user data Description: This issue was addressed with additional entitlement checks.

CVE-2025-43326 [MEDIUM] CVE-2025-43326: macOS Sequoia 15.7 Apple Security Update: About the security content of macOS Sequoia 15.7 Product: macOS Sequoia Version: 15.7 CVE: CVE-2025-43326 Component: GPU Drivers Impact: An app may be able to access sensitive user data Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2025-43345 [MEDIUM] CVE-2025-43345: macOS Sequoia 15.7 Apple Security Update: About the security content of macOS Sequoia 15.7 Product: macOS Sequoia Version: 15.7 CVE: CVE-2025-43345 Component: Kernel Impact: An app may be able to access sensitive user data Description: A correctness issue was addressed with improved checks.

CVE-2025-43315 [MEDIUM] CVE-2025-43315: macOS Sequoia 15.7 Apple Security Update: About the security content of macOS Sequoia 15.7 Product: macOS Sequoia Version: 15.7 CVE: CVE-2025-43315 Component: MigrationKit Impact: An app may be able to access user-sensitive data Description: This issue was addressed by removing the vulnerable code.