Apple Macos Sonoma vulnerabilities
959 known vulnerabilities affecting apple/macos_sonoma.
Total CVEs
959
CISA KEV
11
actively exploited
Public exploits
3
Exploited in wild
6
Severity breakdown
CRITICAL73HIGH289MEDIUM533LOW63UNKNOWN1
Vulnerabilities
Page 3 of 48
CVE-2026-20605MEDIUMCVSS 4.6v14.8.42026-02-11
CVE-2026-20605 [MEDIUM] CVE-2026-20605: macOS Sonoma 14.8.4
Apple Security Update: About the security content of macOS Sonoma 14.8.4
Product: macOS Sonoma
Version: 14.8.4
CVE: CVE-2026-20605
Component: Voice Control
Impact: An app may be able to crash a system process
Description: The issue was addressed with improved memory handling.
apple
CVE-2025-43533MEDIUMCVSS 5.7v14.8.42026-02-11
CVE-2025-43533 [MEDIUM] CVE-2025-43533: macOS Sonoma 14.8.4
Apple Security Update: About the security content of macOS Sonoma 14.8.4
Product: macOS Sonoma
Version: 14.8.4
CVE: CVE-2025-43533
Component: Multi-Touch
Impact: A malicious HID device may cause an unexpected process crash
Description: The issue was addressed with improved bounds checks.
apple
CVE-2026-20671LOWCVSS 3.1v14.8.42026-02-11
CVE-2026-20671 [LOW] CVE-2026-20671: macOS Sonoma 14.8.4
Apple Security Update: About the security content of macOS Sonoma 14.8.4
Product: macOS Sonoma
Version: 14.8.4
CVE: CVE-2026-20671
Component: Kernel
Impact: An attacker in a privileged network position may be able to intercept network traffic
Description: A logic issue was addressed with improved checks.
apple
CVE-2025-43539HIGHCVSS 8.8v14.8.32025-12-12
CVE-2025-43539 [HIGH] CVE-2025-43539: macOS Sonoma 14.8.3
Apple Security Update: About the security content of macOS Sonoma 14.8.3
Product: macOS Sonoma
Version: 14.8.3
CVE: CVE-2025-43539
Component: AppleJPEG
Impact: Processing a file may lead to memory corruption
Description: The issue was addressed with improved bounds checks.
apple
CVE-2025-46285HIGHCVSS 7.8v14.8.32025-12-12
CVE-2025-46285 [HIGH] CVE-2025-46285: macOS Sonoma 14.8.3
Apple Security Update: About the security content of macOS Sonoma 14.8.3
Product: macOS Sonoma
Version: 14.8.3
CVE: CVE-2025-46285
Component: Kernel
Impact: An app may be able to gain root privileges
Description: An integer overflow was addressed by adopting 64-bit timestamps.
apple
CVE-2025-43512HIGHCVSS 7.8v14.8.32025-12-12
CVE-2025-43512 [HIGH] CVE-2025-43512: macOS Sonoma 14.8.3
Apple Security Update: About the security content of macOS Sonoma 14.8.3
Product: macOS Sonoma
Version: 14.8.3
CVE: CVE-2025-43512
Component: Kernel
Impact: An app may be able to elevate privileges
Description: A logic issue was addressed with improved checks.
apple
CVE-2025-9086HIGHCVSS 7.5v14.8.32025-12-12
CVE-2025-9086 [HIGH] CVE-2025-9086: macOS Sonoma 14.8.3
Apple Security Update: About the security content of macOS Sonoma 14.8.3
Product: macOS Sonoma
Version: 14.8.3
CVE: CVE-2025-9086
Component: CVE-2025-9086
apple
CVE-2025-43463MEDIUMCVSS 5.5v14.8.32025-12-12
CVE-2025-43463 [MEDIUM] CVE-2025-43463: macOS Sonoma 14.8.3
Apple Security Update: About the security content of macOS Sonoma 14.8.3
Product: macOS Sonoma
Version: 14.8.3
CVE: CVE-2025-43463
Component: StorageKit
Impact: An app may be able to access sensitive user data
Description: A parsing issue in the handling of directory paths was addressed with improved path validation.
apple
CVE-2024-7264MEDIUMCVSS 6.5v14.8.32025-12-12
CVE-2024-7264 [MEDIUM] CVE-2024-7264: macOS Sonoma 14.8.3
Apple Security Update: About the security content of macOS Sonoma 14.8.3
Product: macOS Sonoma
Version: 14.8.3
CVE: CVE-2024-7264
Component: CVE-2024-7264
apple
CVE-2025-43538MEDIUMCVSS 5.5v14.8.32025-12-12
CVE-2025-43538 [MEDIUM] CVE-2025-43538: macOS Sonoma 14.8.3
Apple Security Update: About the security content of macOS Sonoma 14.8.3
Product: macOS Sonoma
Version: 14.8.3
CVE: CVE-2025-43538
Component: Screen Time
Impact: An app may be able to access sensitive user data
Description: A logging issue was addressed with improved data redaction.
apple
CVE-2025-46287MEDIUMCVSS 6.5v14.8.32025-12-12
CVE-2025-46287 [MEDIUM] CVE-2025-46287: macOS Sonoma 14.8.3
Apple Security Update: About the security content of macOS Sonoma 14.8.3
Product: macOS Sonoma
Version: 14.8.3
CVE: CVE-2025-46287
Component: Call History
Impact: An attacker may be able to spoof their FaceTime caller ID
Description: An inconsistent user interface issue was addressed with improved state management.
apple
CVE-2025-46289MEDIUMCVSS 5.5v14.8.32025-12-12
CVE-2025-46289 [MEDIUM] CVE-2025-46289: macOS Sonoma 14.8.3
Apple Security Update: About the security content of macOS Sonoma 14.8.3
Product: macOS Sonoma
Version: 14.8.3
CVE: CVE-2025-46289
Component: AppSandbox
Impact: An app may be able to access protected user data
Description: A logic issue was addressed with improved file handling.
apple
CVE-2025-43519MEDIUMCVSS 5.5v14.8.32025-12-12
CVE-2025-43519 [MEDIUM] CVE-2025-43519: macOS Sonoma 14.8.3
Apple Security Update: About the security content of macOS Sonoma 14.8.3
Product: macOS Sonoma
Version: 14.8.3
CVE: CVE-2025-43519
Component: AppleMobileFileIntegrity
Impact: An app may be able to access sensitive user data
Description: A permissions issue was addressed with additional restrictions.
apple
CVE-2025-43509MEDIUMCVSS 5.5v14.8.32025-12-12
CVE-2025-43509 [MEDIUM] CVE-2025-43509: macOS Sonoma 14.8.3
Apple Security Update: About the security content of macOS Sonoma 14.8.3
Product: macOS Sonoma
Version: 14.8.3
CVE: CVE-2025-43509
Component: Networking
Impact: An app may be able to access sensitive user data
Description: This issue was addressed with improved data protection.
apple
CVE-2025-46276MEDIUMCVSS 5.5v14.8.32025-12-12
CVE-2025-46276 [MEDIUM] CVE-2025-46276: macOS Sonoma 14.8.3
Apple Security Update: About the security content of macOS Sonoma 14.8.3
Product: macOS Sonoma
Version: 14.8.3
CVE: CVE-2025-46276
Component: Messages
Impact: An app may be able to access sensitive user data
Description: An information disclosure issue was addressed with improved privacy controls.
apple
CVE-2025-43482MEDIUMCVSS 5.5v14.8.32025-12-12
CVE-2025-43482 [MEDIUM] CVE-2025-43482: macOS Sonoma 14.8.3
Apple Security Update: About the security content of macOS Sonoma 14.8.3
Product: macOS Sonoma
Version: 14.8.3
CVE: CVE-2025-43482
Component: Audio
Impact: An app may be able to cause a denial-of-service
Description: The issue was addressed with improved input validation.
apple
CVE-2025-43530MEDIUMCVSS 5.5v14.8.32025-12-12
CVE-2025-43530 [MEDIUM] CVE-2025-43530: macOS Sonoma 14.8.3
Apple Security Update: About the security content of macOS Sonoma 14.8.3
Product: macOS Sonoma
Version: 14.8.3
CVE: CVE-2025-43530
Component: VoiceOver
Impact: An app may be able to access sensitive user data
Description: This issue was addressed with improved checks.
apple
CVE-2025-43513MEDIUMCVSS 5.5v14.8.32025-12-12
CVE-2025-43513 [MEDIUM] CVE-2025-43513: macOS Sonoma 14.8.3
Apple Security Update: About the security content of macOS Sonoma 14.8.3
Product: macOS Sonoma
Version: 14.8.3
CVE: CVE-2025-43513
Component: MDM Configuration Tools
Impact: An app may be able to read sensitive location information
Description: A permissions issue was addressed by removing the vulnerable code.
apple
CVE-2025-43416MEDIUMCVSS 5.5v14.8.32025-12-12
CVE-2025-43416 [MEDIUM] CVE-2025-43416: macOS Sonoma 14.8.3
Apple Security Update: About the security content of macOS Sonoma 14.8.3
Product: macOS Sonoma
Version: 14.8.3
CVE: CVE-2025-43416
Component: StorageKit
Impact: An app may be able to access sensitive user data
Description: A parsing issue in the handling of directory paths was addressed with improved path validation.
apple
CVE-2025-5918LOWCVSS 3.9v14.8.32025-12-12
CVE-2025-5918 [LOW] CVE-2025-5918: macOS Sonoma 14.8.3
Apple Security Update: About the security content of macOS Sonoma 14.8.3
Product: macOS Sonoma
Version: 14.8.3
CVE: CVE-2025-5918
Component: CVE-2025-5918
apple