Apple Macos Sonoma vulnerabilities

CVE-2025-30433 [CRITICAL] CVE-2025-30433: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-30433 Component: Shortcuts Impact: A shortcut may be able to access files that are normally inaccessible to the Shortcuts app Description: This issue was addressed with improved access restrictions.

CVE-2025-24253 [CRITICAL] CVE-2025-24253: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-24253 Component: StorageKit Impact: An app may be able to access protected user data Description: This issue was addressed with improved handling of symlinks.

CVE-2025-24085 [CRITICAL] CVE-2025-24085: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-24085 Component: CVE-2025-24085

CVE-2025-24233 [CRITICAL] CVE-2025-24233: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-24233 Component: AppleMobileFileIntegrity Impact: A malicious app may be able to read or write to protected files Description: A permissions issue was addressed with additional restrictions.

CVE-2025-24260 [CRITICAL] CVE-2025-24260: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-24260 Component: SMB Impact: An app may be able to execute arbitrary code with kernel privileges Description: A buffer overflow issue was addressed with improved memory handling.

CVE-2025-24241 [CRITICAL] CVE-2025-24241: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-24241 Component: WindowServer Impact: An app may be able to trick a user into copying sensitive data to the pasteboard Description: A configuration issue was addressed with additional restrictions.

CVE-2025-24181 [CRITICAL] CVE-2025-24181: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-24181 Component: Sandbox Impact: An app may be able to access protected user data Description: A permissions issue was addressed with additional restrictions.

CVE-2025-24249 [CRITICAL] CVE-2025-24249: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-24249 Component: Installer Impact: An app may be able to check the existence of an arbitrary path on the file system Description: A permissions issue was addressed with additional sandbox restrictions.

CVE-2025-24172 [CRITICAL] CVE-2025-24172: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-24172 Component: Mail Impact: "Block All Remote Content" may not apply for all mail previews Description: A permissions issue was addressed with additional sandbox restrictions.

CVE-2025-31194 [CRITICAL] CVE-2025-31194: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-31194 Component: Shortcuts Impact: A Shortcut may run with admin privileges without authentication Description: An authentication issue was addressed with improved state management.

CVE-2025-30424 [CRITICAL] CVE-2025-30424: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-30424 Component: Photos Storage Impact: Deleting a conversation in Messages may expose user contact information in system logging Description: A logging issue was addressed with improved data redaction.

CVE-2025-24195 [CRITICAL] CVE-2025-24195: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-24195 Component: Libinfo Impact: A user may be able to elevate privileges Description: An integer overflow was addressed with improved input validation.

CVE-2025-24246 [CRITICAL] CVE-2025-24246: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-24246 Component: OpenSSH Impact: An app may be able to access user-sensitive data Description: An injection issue was addressed with improved validation.

CVE-2025-24207 [CRITICAL] CVE-2025-24207: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-24207 Component: Storage Management Impact: An app may be able to enable iCloud storage features without user consent Description: A permissions issue was addressed with additional restrictions.

CVE-2025-24230 [CRITICAL] CVE-2025-24230: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-24230 Component: CoreAudio Impact: Playing a malicious audio file may lead to an unexpected app termination Description: An out-of-bounds read issue was addressed with improved input validation.

CVE-2025-30465 [CRITICAL] CVE-2025-30465: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-30465 Component: Shortcuts Impact: A shortcut may be able to access files that are normally inaccessible to the Shortcuts app Description: A permissions issue was addressed with improved validation.

CVE-2025-24232 [CRITICAL] CVE-2025-24232: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-24232 Component: NSDocument Impact: A malicious app may be able to access arbitrary files Description: This issue was addressed through improved state management.

CVE-2025-24250 [CRITICAL] CVE-2025-24250: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-24250 Component: Security Impact: A malicious app acting as a HTTPS proxy could get access to sensitive user data Description: This issue was addressed with improved access restrictions.

CVE-2025-24265 [CRITICAL] CVE-2025-24265: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-24265 Component: Xsan Impact: An app may be able to cause unexpected system termination Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2025-24211 [CRITICAL] CVE-2025-24211: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-24211 Component: CoreMedia Impact: Processing a maliciously crafted video file may lead to unexpected app termination or corrupt process memory Description: This issue was addressed with improved memory handling.