Apple Macos Sonoma vulnerabilities

CVE-2025-43249 [HIGH] CVE-2025-43249: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43249 Component: AppleMobileFileIntegrity Impact: An app may be able to gain root privileges Description: A logic issue was addressed with improved checks.

CVE-2025-43196 [HIGH] CVE-2025-43196: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43196 Component: LaunchServices Impact: An app may be able to execute arbitrary code out of its sandbox or with certain elevated privileges Description: This issue was addressed through improved state management.

CVE-2025-43239 [HIGH] CVE-2025-43239: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43239 Component: Single Sign-On Impact: An app may be able to access sensitive user data Description: This issue was addressed with additional entitlement checks.

CVE-2025-31243 [HIGH] CVE-2025-31243: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-31243 Component: AppleMobileFileIntegrity Impact: An app may be able to gain root privileges Description: A permissions issue was addressed with additional restrictions.

CVE-2025-43254 [HIGH] CVE-2025-43254: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43254 Component: Dock Impact: An app may be able to access protected user data Description: This issue was addressed by removing the vulnerable code.

CVE-2025-43256 [HIGH] CVE-2025-43256: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43256 Component: StorageKit Impact: An app may be able to gain root privileges Description: This issue was addressed through improved state management.

CVE-2025-43270 [HIGH] CVE-2025-43270: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43270 Component: Notes Impact: An app may gain unauthorized access to Local Network Description: An access issue was addressed with additional sandbox restrictions.

CVE-2025-7424 [HIGH] CVE-2025-7424: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-7424 Component: LaunchServices Impact: An app may be able to execute arbitrary code out of its sandbox or with certain elevated privileges Description: This issue was addressed through improved state management.

CVE-2025-43226 [MEDIUM] CVE-2025-43226: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43226 Component: CVE-2025-43226

CVE-2025-43191 [MEDIUM] CVE-2025-43191: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43191 Component: Admin Framework Impact: An app may be able to cause a denial-of-service Description: A path handling issue was addressed with improved validation.

CVE-2025-43266 [MEDIUM] CVE-2025-43266: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43266 Component: NSSpellChecker Impact: An app may be able to break out of its sandbox Description: A permissions issue was addressed with additional restrictions.

CVE-2025-43250 [MEDIUM] CVE-2025-43250: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43250 Component: SharedFileList Impact: An app may be able to break out of its sandbox Description: A path handling issue was addressed with improved validation.

CVE-2025-43225 [MEDIUM] CVE-2025-43225: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43225 Component: Notes Impact: An app may be able to access sensitive user data Description: A logging issue was addressed with improved data redaction.

CVE-2025-43206 [MEDIUM] CVE-2025-43206: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43206 Component: System Settings Impact: An app may be able to access protected user data Description: A parsing issue in the handling of directory paths was addressed with improved path validation.

CVE-2025-43197 [MEDIUM] CVE-2025-43197: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43197 Component: Single Sign-On Impact: An app may be able to access sensitive user data Description: This issue was addressed with additional entitlement checks.

CVE-2025-43284 [MEDIUM] CVE-2025-43284: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43284 Component: GPU Drivers Impact: An app may be able to cause unexpected system termination Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2025-43195 [MEDIUM] CVE-2025-43195: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43195 Component: CoreServices Impact: An app may be able to access sensitive user data Description: An issue existed in the handling of environment variables. This issue was addressed with improved validation.

CVE-2025-43210 [MEDIUM] CVE-2025-43210: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43210 Component: CoreMedia Impact: Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory Description: An out-of-bounds access issue was addressed with improved bounds checking.

CVE-2025-43313 [MEDIUM] CVE-2025-43313: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43313 Component: CoreServices Impact: An app may be able to access sensitive user data Description: A logic issue was addressed with improved restrictions.

CVE-2025-43238 [MEDIUM] CVE-2025-43238: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43238 Component: Xsan Impact: An app may be able to cause unexpected system termination Description: An integer overflow was addressed with improved input validation.