Apple Macos Sonoma vulnerabilities

CVE-2025-24205 [MEDIUM] CVE-2025-24205: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-24205 Component: Siri Impact: An app may be able to access user-sensitive data Description: An authorization issue was addressed with improved state management.

CVE-2025-43205 [MEDIUM] CVE-2025-43205: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-43205 Component: Audio Impact: An app may be able to bypass ASLR Description: An out-of-bounds access issue was addressed with improved bounds checking.

CVE-2025-30450 [MEDIUM] CVE-2025-30450: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-30450 Component: Mail Impact: "Block All Remote Content" may not apply for all mail previews Description: A permissions issue was addressed with additional sandbox restrictions.

CVE-2025-30447 [MEDIUM] CVE-2025-30447: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-30447 Component: Foundation Impact: An app may be able to access sensitive user data Description: The issue was resolved by sanitizing logging

CVE-2025-30454 [MEDIUM] CVE-2025-30454: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-30454 Component: CoreMedia Playback Impact: A malicious app may be able to access private information Description: A path handling issue was addressed with improved validation.

CVE-2025-31203 [MEDIUM] CVE-2025-31203: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-31203 Component: CoreUtils Impact: An attacker on the local network may be able to cause a denial-of-service Description: An integer overflow was addressed with improved input validation.

CVE-2025-31191 [MEDIUM] CVE-2025-31191: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-31191 Component: CoreServices Impact: An app may be able to access sensitive user data Description: This issue was addressed through improved state management.

CVE-2025-24280 [MEDIUM] CVE-2025-24280: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-24280 Component: Shortcuts Impact: An app may be able to access user-sensitive data Description: An access issue was addressed with additional sandbox restrictions.

CVE-2025-24244 [MEDIUM] CVE-2025-24244: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-24244 Component: Audio Impact: Processing a maliciously crafted font may result in the disclosure of process memory Description: The issue was addressed with improved memory handling.

CVE-2025-24279 [MEDIUM] CVE-2025-24279: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-24279 Component: Voice Control Impact: An app may be able to access contacts Description: This issue was addressed with improved file handling.

CVE-2025-24111 [MEDIUM] CVE-2025-24111: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-24111 Component: Display Impact: An app may be able to cause unexpected system termination Description: A memory corruption issue was addressed with improved state management.

CVE-2025-30455 [MEDIUM] CVE-2025-30455: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-30455 Component: Dock Impact: A malicious app may be able to access private information Description: The issue was addressed with improved checks.

CVE-2025-24097 [MEDIUM] CVE-2025-24097: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-24097 Component: AirDrop Impact: An app may be able to read arbitrary file metadata Description: A permissions issue was addressed with additional restrictions.

CVE-2025-24276 [MEDIUM] CVE-2025-24276: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-24276 Component: App Store Impact: A malicious app may be able to access private information Description: This issue was addressed by removing the vulnerable code.

CVE-2025-30432 [MEDIUM] CVE-2025-30432: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-30432 Component: Kernel Impact: A malicious app may be able to attempt passcode entries on a locked device and thereby cause escalating time delays after 4 failures Description: A logic issue was addressed with improved state management.

CVE-2025-31261 [MEDIUM] CVE-2025-31261: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-31261 Component: StorageKit Impact: An app may be able to access protected user data Description: A permissions issue was addressed with additional sandbox restrictions.

CVE-2025-24240 [MEDIUM] CVE-2025-24240: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-24240 Component: StorageKit Impact: An app may be able to access user-sensitive data Description: A race condition was addressed with additional validation.

CVE-2025-24212 [MEDIUM] CVE-2025-24212: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-24212 Component: Calendar Impact: An app may be able to break out of its sandbox Description: This issue was addressed with improved checks.

CVE-2025-30438 [MEDIUM] CVE-2025-30438: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-30438 Component: Share Sheet Impact: A malicious app may be able to dismiss the system notification on the Lock Screen that a recording was started Description: This issue was addressed with improved access restrictions.

CVE-2025-31197 [MEDIUM] CVE-2025-31197: macOS Sonoma 14.7.5 Apple Security Update: About the security content of macOS Sonoma 14.7.5 Product: macOS Sonoma Version: 14.7.5 CVE: CVE-2025-31197 Component: AirPlay Impact: An attacker on the local network may cause an unexpected app termination Description: The issue was addressed with improved checks.