Apple Macos Sonoma vulnerabilities

959 known vulnerabilities affecting apple/macos_sonoma.

Total CVEs
959
CISA KEV
11
actively exploited
Public exploits
3
Exploited in wild
6
Severity breakdown
CRITICAL73HIGH289MEDIUM533LOW63UNKNOWN1

Vulnerabilities

Page 27 of 48
CVE-2024-40776MEDIUMCVSS 4.3v14.62024-07-29
CVE-2024-40776 [MEDIUM] CVE-2024-40776: macOS Sonoma 14.6 Apple Security Update: About the security content of macOS Sonoma 14.6 Product: macOS Sonoma Version: 14.6 CVE: CVE-2024-40776 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: A use-after-free issue was addressed with improved memory management.
apple
CVE-2024-40807MEDIUMCVSS 5.5v14.62024-07-29
CVE-2024-40807 [MEDIUM] CVE-2024-40807: macOS Sonoma 14.6 Apple Security Update: About the security content of macOS Sonoma 14.6 Product: macOS Sonoma Version: 14.6 CVE: CVE-2024-40807 Component: Shortcuts Impact: A shortcut may be able to use sensitive data with certain actions without prompting the user Description: A logic issue was addressed with improved checks.
apple
CVE-2024-40811MEDIUMCVSS 5.5v14.62024-07-29
CVE-2024-40811 [MEDIUM] CVE-2024-40811: macOS Sonoma 14.6 Apple Security Update: About the security content of macOS Sonoma 14.6 Product: macOS Sonoma Version: 14.6 CVE: CVE-2024-40811 Component: StorageKit Impact: A malicious app may be able to gain root privileges Description: The issue was addressed with improved checks.
apple
CVE-2023-6277MEDIUMCVSS 6.5v14.62024-07-29
CVE-2023-6277 [MEDIUM] CVE-2023-6277: macOS Sonoma 14.6 Apple Security Update: About the security content of macOS Sonoma 14.6 Product: macOS Sonoma Version: 14.6 CVE: CVE-2023-6277 Component: CVE-2023-6277
apple
CVE-2024-40833MEDIUMCVSS 5.5v14.62024-07-29
CVE-2024-40833 [MEDIUM] CVE-2024-40833: macOS Sonoma 14.6 Apple Security Update: About the security content of macOS Sonoma 14.6 Product: macOS Sonoma Version: 14.6 CVE: CVE-2024-40833 Component: Shortcuts Impact: A shortcut may be able to use sensitive data with certain actions without prompting the user Description: A logic issue was addressed with improved checks.
apple
CVE-2024-40783MEDIUMCVSS 5.5v14.62024-07-29
CVE-2024-40783 [MEDIUM] CVE-2024-40783: macOS Sonoma 14.6 Apple Security Update: About the security content of macOS Sonoma 14.6 Product: macOS Sonoma Version: 14.6 CVE: CVE-2024-40783 Component: APFS Impact: A malicious application may be able to bypass Privacy preferences Description: The issue was addressed with improved restriction of data container access.
apple
CVE-2024-40806MEDIUMCVSS 5.5v14.62024-07-29
CVE-2024-40806 [MEDIUM] CVE-2024-40806: macOS Sonoma 14.6 Apple Security Update: About the security content of macOS Sonoma 14.6 Product: macOS Sonoma Version: 14.6 CVE: CVE-2024-40806 Component: ImageIO Impact: Processing a maliciously crafted file may lead to unexpected app termination Description: An out-of-bounds read issue was addressed with improved input validation.
apple
CVE-2024-40796MEDIUMCVSS 5.3v14.62024-07-29
CVE-2024-40796 [MEDIUM] CVE-2024-40796: macOS Sonoma 14.6 Apple Security Update: About the security content of macOS Sonoma 14.6 Product: macOS Sonoma Version: 14.6 CVE: CVE-2024-40796 Component: NetworkExtension Impact: Private browsing may leak some browsing history Description: A privacy issue was addressed with improved private data redaction for log entries.
apple
CVE-2024-40789MEDIUMCVSS 6.5v14.62024-07-29
CVE-2024-40789 [MEDIUM] CVE-2024-40789: macOS Sonoma 14.6 Apple Security Update: About the security content of macOS Sonoma 14.6 Product: macOS Sonoma Version: 14.6 CVE: CVE-2024-40789 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: An out-of-bounds access issue was addressed with improved bounds checking.
apple
CVE-2024-40780MEDIUMCVSS 5.5v14.62024-07-29
CVE-2024-40780 [MEDIUM] CVE-2024-40780: macOS Sonoma 14.6 Apple Security Update: About the security content of macOS Sonoma 14.6 Product: macOS Sonoma Version: 14.6 CVE: CVE-2024-40780 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: An out-of-bounds read was addressed with improved bounds checking.
apple
CVE-2024-40817MEDIUMCVSS 6.1v14.62024-07-29
CVE-2024-40817 [MEDIUM] CVE-2024-40817: macOS Sonoma 14.6 Apple Security Update: About the security content of macOS Sonoma 14.6 Product: macOS Sonoma Version: 14.6 CVE: CVE-2024-40817 Component: Safari Impact: Visiting a website that frames malicious content may lead to UI spoofing Description: The issue was addressed with improved UI handling.
apple
CVE-2024-2379MEDIUMCVSS 6.3v14.62024-07-29
CVE-2024-2379 [MEDIUM] CVE-2024-2379: macOS Sonoma 14.6 Apple Security Update: About the security content of macOS Sonoma 14.6 Product: macOS Sonoma Version: 14.6 CVE: CVE-2024-2379 Component: CVE-2024-2379
apple
CVE-2023-27952MEDIUMCVSS 4.7v14.62024-07-29
CVE-2023-27952 [MEDIUM] CVE-2023-27952: macOS Sonoma 14.6 Apple Security Update: About the security content of macOS Sonoma 14.6 Product: macOS Sonoma Version: 14.6 CVE: CVE-2023-27952 Component: Safari Impact: An app may bypass Gatekeeper checks Description: A race condition was addressed with improved locking.
apple
CVE-2024-2466MEDIUMCVSS 6.5v14.62024-07-29
CVE-2024-2466 [MEDIUM] CVE-2024-2466: macOS Sonoma 14.6 Apple Security Update: About the security content of macOS Sonoma 14.6 Product: macOS Sonoma Version: 14.6 CVE: CVE-2024-2466 Component: CVE-2024-2466
apple
CVE-2024-27878MEDIUMCVSS 6.7v14.62024-07-29
CVE-2024-27878 [MEDIUM] CVE-2024-27878: macOS Sonoma 14.6 Apple Security Update: About the security content of macOS Sonoma 14.6 Product: macOS Sonoma Version: 14.6 CVE: CVE-2024-27878 Component: ASP TCP Impact: An app may be able to execute arbitrary code with kernel privileges Description: A buffer overflow issue was addressed with improved memory handling.
apple
CVE-2024-40836MEDIUMCVSS 5.5v14.62024-07-29
CVE-2024-40836 [MEDIUM] CVE-2024-40836: macOS Sonoma 14.6 Apple Security Update: About the security content of macOS Sonoma 14.6 Product: macOS Sonoma Version: 14.6 CVE: CVE-2024-40836 Component: Shortcuts Impact: A shortcut may be able to use sensitive data with certain actions without prompting the user Description: A logic issue was addressed with improved checks.
apple
CVE-2024-40782MEDIUMCVSS 6.5v14.62024-07-29
CVE-2024-40782 [MEDIUM] CVE-2024-40782: macOS Sonoma 14.6 Apple Security Update: About the security content of macOS Sonoma 14.6 Product: macOS Sonoma Version: 14.6 CVE: CVE-2024-40782 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: A use-after-free issue was addressed with improved memory management.
apple
CVE-2024-40834MEDIUMCVSS 4.4v14.62024-07-29
CVE-2024-40834 [MEDIUM] CVE-2024-40834: macOS Sonoma 14.6 Apple Security Update: About the security content of macOS Sonoma 14.6 Product: macOS Sonoma Version: 14.6 CVE: CVE-2024-40834 Component: Shortcuts Impact: A shortcut may be able to bypass sensitive Shortcuts app settings Description: This issue was addressed by adding an additional prompt for user consent.
apple
CVE-2024-40835MEDIUMCVSS 5.5v14.62024-07-29
CVE-2024-40835 [MEDIUM] CVE-2024-40835: macOS Sonoma 14.6 Apple Security Update: About the security content of macOS Sonoma 14.6 Product: macOS Sonoma Version: 14.6 CVE: CVE-2024-40835 Component: Shortcuts Impact: A shortcut may be able to use sensitive data with certain actions without prompting the user Description: A logic issue was addressed with improved checks.
apple
CVE-2024-44141MEDIUMCVSS 6.8v14.62024-07-29
CVE-2024-44141 [MEDIUM] CVE-2024-44141: macOS Sonoma 14.6 Apple Security Update: About the security content of macOS Sonoma 14.6 Product: macOS Sonoma Version: 14.6 CVE: CVE-2024-44141 Component: DiskArbitration Impact: A person with physical access to an unlocked Mac may be able to gain root code execution Description: The issue was addressed with improved checks.
apple
← Previous27 / 48Next →