Apple Macos Sonoma vulnerabilities

CVE-2025-24137 [HIGH] CVE-2025-24137: macOS Sonoma 14.7.3 Apple Security Update: About the security content of macOS Sonoma 14.7.3 Product: macOS Sonoma Version: 14.7.3 CVE: CVE-2025-24137 Component: AirPlay Impact: An attacker on the local network may corrupt process memory Description: A type confusion issue was addressed with improved checks.

CVE-2025-24855 [HIGH] CVE-2025-24855: macOS Sonoma 14.7.3 Apple Security Update: About the security content of macOS Sonoma 14.7.3 Product: macOS Sonoma Version: 14.7.3 CVE: CVE-2025-24855 Component: LaunchServices Impact: An app may be able to bypass Privacy preferences Description: An access issue was addressed with additional sandbox restrictions.

CVE-2024-54509 [HIGH] CVE-2024-54509: macOS Sonoma 14.7.3 Apple Security Update: About the security content of macOS Sonoma 14.7.3 Product: macOS Sonoma Version: 14.7.3 CVE: CVE-2024-54509 Component: ASP TCP Impact: An app may be able to cause unexpected system termination or write kernel memory Description: An out-of-bounds write issue was addressed with improved input validation.

CVE-2025-24120 [HIGH] CVE-2025-24120: macOS Sonoma 14.7.3 Apple Security Update: About the security content of macOS Sonoma 14.7.3 Product: macOS Sonoma Version: 14.7.3 CVE: CVE-2025-24120 Component: WindowServer Impact: An attacker may be able to cause unexpected app termination Description: This issue was addressed by improved management of object lifetimes.

CVE-2025-24176 [HIGH] CVE-2025-24176: macOS Sonoma 14.7.3 Apple Security Update: About the security content of macOS Sonoma 14.7.3 Product: macOS Sonoma Version: 14.7.3 CVE: CVE-2025-24176 Component: StorageKit Impact: A local attacker may be able to elevate their privileges Description: A permissions issue was addressed with improved validation.

CVE-2025-24138 [MEDIUM] CVE-2025-24138: macOS Sonoma 14.7.3 Apple Security Update: About the security content of macOS Sonoma 14.7.3 Product: macOS Sonoma Version: 14.7.3 CVE: CVE-2025-24138 Component: Spotlight Impact: A malicious application may be able to leak sensitive user information Description: This issue was addressed through improved state management.

CVE-2025-24094 [MEDIUM] CVE-2025-24094: macOS Sonoma 14.7.3 Apple Security Update: About the security content of macOS Sonoma 14.7.3 Product: macOS Sonoma Version: 14.7.3 CVE: CVE-2025-24094 Component: LaunchServices Impact: An app may be able to access user-sensitive data Description: A race condition was addressed with additional validation.

CVE-2025-24183 [MEDIUM] CVE-2025-24183: macOS Sonoma 14.7.3 Apple Security Update: About the security content of macOS Sonoma 14.7.3 Product: macOS Sonoma Version: 14.7.3 CVE: CVE-2025-24183 Component: Perl Impact: A local user may be able to modify protected parts of the file system Description: The issue was addressed with improved checks.

CVE-2025-31242 [MEDIUM] CVE-2025-31242: macOS Sonoma 14.7.3 Apple Security Update: About the security content of macOS Sonoma 14.7.3 Product: macOS Sonoma Version: 14.7.3 CVE: CVE-2025-31242 Component: StoreKit Impact: An app may be able to access sensitive user data Description: A privacy issue was addressed with improved private data redaction for log entries.

CVE-2025-24139 [MEDIUM] CVE-2025-24139: macOS Sonoma 14.7.3 Apple Security Update: About the security content of macOS Sonoma 14.7.3 Product: macOS Sonoma Version: 14.7.3 CVE: CVE-2025-24139 Component: Security Impact: An app may be able to access protected user data Description: This issue was addressed with improved validation of symlinks.

CVE-2024-54497 [MEDIUM] CVE-2024-54497: macOS Sonoma 14.7.3 Apple Security Update: About the security content of macOS Sonoma 14.7.3 Product: macOS Sonoma Version: 14.7.3 CVE: CVE-2024-54497 Component: QuartzCore Impact: Processing web content may lead to a denial-of-service Description: The issue was addressed with improved checks.

CVE-2025-24099 [MEDIUM] CVE-2025-24099: macOS Sonoma 14.7.3 Apple Security Update: About the security content of macOS Sonoma 14.7.3 Product: macOS Sonoma Version: 14.7.3 CVE: CVE-2025-24099 Component: PackageKit Impact: A local attacker may be able to elevate their privileges Description: The issue was addressed with improved checks.

CVE-2025-24163 [MEDIUM] CVE-2025-24163: macOS Sonoma 14.7.3 Apple Security Update: About the security content of macOS Sonoma 14.7.3 Product: macOS Sonoma Version: 14.7.3 CVE: CVE-2025-24163 Component: CoreAudio Impact: Parsing a file may lead to an unexpected app termination Description: The issue was addressed with improved checks.

CVE-2025-24086 [MEDIUM] CVE-2025-24086: macOS Sonoma 14.7.3 Apple Security Update: About the security content of macOS Sonoma 14.7.3 Product: macOS Sonoma Version: 14.7.3 CVE: CVE-2025-24086 Component: ImageIO Impact: Processing an image may lead to a denial-of-service Description: The issue was addressed with improved memory handling.

CVE-2025-31248 [MEDIUM] CVE-2025-31248: macOS Sonoma 14.7.3 Apple Security Update: About the security content of macOS Sonoma 14.7.3 Product: macOS Sonoma Version: 14.7.3 CVE: CVE-2025-31248 Component: UserAccountUpdater Impact: An app may be able to access sensitive user data Description: A parsing issue in the handling of directory paths was addressed with improved path validation.

CVE-2025-24124 [MEDIUM] CVE-2025-24124: macOS Sonoma 14.7.3 Apple Security Update: About the security content of macOS Sonoma 14.7.3 Product: macOS Sonoma Version: 14.7.3 CVE: CVE-2025-24124 Component: CoreMedia Impact: Parsing a file may lead to an unexpected app termination Description: The issue was addressed with improved checks.

CVE-2025-24127 [MEDIUM] CVE-2025-24127: macOS Sonoma 14.7.3 Apple Security Update: About the security content of macOS Sonoma 14.7.3 Product: macOS Sonoma Version: 14.7.3 CVE: CVE-2025-24127 Component: ARKit Impact: Parsing a file may lead to an unexpected app termination Description: The issue was addressed with improved checks.

CVE-2025-24149 [MEDIUM] CVE-2025-24149: macOS Sonoma 14.7.3 Apple Security Update: About the security content of macOS Sonoma 14.7.3 Product: macOS Sonoma Version: 14.7.3 CVE: CVE-2025-24149 Component: SceneKit Impact: Parsing a file may lead to disclosure of user information Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2025-24122 [MEDIUM] CVE-2025-24122: macOS Sonoma 14.7.3 Apple Security Update: About the security content of macOS Sonoma 14.7.3 Product: macOS Sonoma Version: 14.7.3 CVE: CVE-2025-24122 Component: AppleMobileFileIntegrity Impact: An app may be able to modify protected parts of the file system Description: A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions.

CVE-2025-24092 [MEDIUM] CVE-2025-24092: macOS Sonoma 14.7.3 Apple Security Update: About the security content of macOS Sonoma 14.7.3 Product: macOS Sonoma Version: 14.7.3 CVE: CVE-2025-24092 Component: TV App Impact: An app may be able to read sensitive location information Description: This issue was addressed with improved data protection.