Apple Macos Sonoma vulnerabilities
959 known vulnerabilities affecting apple/macos_sonoma.
Total CVEs
959
CISA KEV
11
actively exploited
Public exploits
3
Exploited in wild
6
Severity breakdown
CRITICAL73HIGH289MEDIUM533LOW63UNKNOWN1
Vulnerabilities
Page 33 of 48
CVE-2024-23294HIGHCVSS 7.8v14.42024-03-07
CVE-2024-23294 [HIGH] CVE-2024-23294: macOS Sonoma 14.4
Apple Security Update: About the security content of macOS Sonoma 14.4
Product: macOS Sonoma
Version: 14.4
CVE: CVE-2024-23294
Component: QuartzCore
Impact: Processing malicious input may lead to code execution
Description: This issue was addressed by removing the vulnerable code.
apple
CVE-2024-23258HIGHCVSS 7.8v14.42024-03-07
CVE-2024-23258 [HIGH] CVE-2024-23258: macOS Sonoma 14.4
Apple Security Update: About the security content of macOS Sonoma 14.4
Product: macOS Sonoma
Version: 14.4
CVE: CVE-2024-23258
Component: ImageIO
Impact: Processing an image may lead to arbitrary code execution
Description: An out-of-bounds read was addressed with improved input validation.
apple
CVE-2024-23274HIGHCVSS 7.8v14.42024-03-07
CVE-2024-23274 [HIGH] CVE-2024-23274: macOS Sonoma 14.4
Apple Security Update: About the security content of macOS Sonoma 14.4
Product: macOS Sonoma
Version: 14.4
CVE: CVE-2024-23274
Component: PackageKit
Impact: An app may be able to elevate privileges
Description: An injection issue was addressed with improved input validation.
apple
CVE-2024-27853HIGHCVSS 7.8v14.42024-03-07
CVE-2024-27853 [HIGH] CVE-2024-27853: macOS Sonoma 14.4
Apple Security Update: About the security content of macOS Sonoma 14.4
Product: macOS Sonoma
Version: 14.4
CVE: CVE-2024-27853
Component: CVE-2024-23225
Impact: A maliciously crafted ZIP archive may bypass Gatekeeper checks
Description: This issue was addressed with improved checks.
apple
CVE-2024-23278HIGHCVSS 7.8v14.42024-03-07
CVE-2024-23278 [HIGH] CVE-2024-23278: macOS Sonoma 14.4
Apple Security Update: About the security content of macOS Sonoma 14.4
Product: macOS Sonoma
Version: 14.4
CVE: CVE-2024-23278
Component: CVE-2024-23225
Impact: A maliciously crafted ZIP archive may bypass Gatekeeper checks
Description: This issue was addressed with improved checks.
apple
CVE-2024-23246HIGHCVSS 8.6v14.42024-03-07
CVE-2024-23246 [HIGH] CVE-2024-23246: macOS Sonoma 14.4
Apple Security Update: About the security content of macOS Sonoma 14.4
Product: macOS Sonoma
Version: 14.4
CVE: CVE-2024-23246
Component: UIKit
Impact: An app may be able to break out of its sandbox
Description: This issue was addressed by removing the vulnerable code.
apple
CVE-2024-23249HIGHCVSS 7.1v14.42024-03-07
CVE-2024-23249 [HIGH] CVE-2024-23249: macOS Sonoma 14.4
Apple Security Update: About the security content of macOS Sonoma 14.4
Product: macOS Sonoma
Version: 14.4
CVE: CVE-2024-23249
Component: ColorSync
Impact: Processing a file may lead to a denial-of-service or potentially disclose memory contents
Description: The issue was addressed with improved memory handling.
apple
CVE-2024-23230MEDIUMCVSS 5.5v14.42024-03-07
CVE-2024-23230 [MEDIUM] CVE-2024-23230: macOS Sonoma 14.4
Apple Security Update: About the security content of macOS Sonoma 14.4
Product: macOS Sonoma
Version: 14.4
CVE: CVE-2024-23230
Component: SharedFileList
Impact: An app may be able to access sensitive user data
Description: This issue was addressed with improved file handling.
apple
CVE-2024-23287MEDIUMCVSS 5.5v14.42024-03-07
CVE-2024-23287 [MEDIUM] CVE-2024-23287: macOS Sonoma 14.4
Apple Security Update: About the security content of macOS Sonoma 14.4
Product: macOS Sonoma
Version: 14.4
CVE: CVE-2024-23287
Component: Messages
Impact: An app may be able to access user-sensitive data
Description: A privacy issue was addressed with improved handling of temporary files.
apple
CVE-2024-23273MEDIUMCVSS 4.3v14.42024-03-07
CVE-2024-23273 [MEDIUM] CVE-2024-23273: macOS Sonoma 14.4
Apple Security Update: About the security content of macOS Sonoma 14.4
Product: macOS Sonoma
Version: 14.4
CVE: CVE-2024-23273
Component: Safari Private Browsing
Impact: Private Browsing tabs may be accessed without authentication
Description: This issue was addressed through improved state management.
apple
CVE-2024-23239MEDIUMCVSS 4.7v14.42024-03-07
CVE-2024-23239 [MEDIUM] CVE-2024-23239: macOS Sonoma 14.4
Apple Security Update: About the security content of macOS Sonoma 14.4
Product: macOS Sonoma
Version: 14.4
CVE: CVE-2024-23239
Component: Sandbox
Impact: An app may be able to leak sensitive user information
Description: A race condition was addressed with improved state handling.
apple
CVE-2024-23283MEDIUMCVSS 5.5v14.42024-03-07
CVE-2024-23283 [MEDIUM] CVE-2024-23283: macOS Sonoma 14.4
Apple Security Update: About the security content of macOS Sonoma 14.4
Product: macOS Sonoma
Version: 14.4
CVE: CVE-2024-23283
Component: CVE-2024-23283
apple
CVE-2024-23272MEDIUMCVSS 5.5v14.42024-03-07
CVE-2024-23272 [MEDIUM] CVE-2024-23272: macOS Sonoma 14.4
Apple Security Update: About the security content of macOS Sonoma 14.4
Product: macOS Sonoma
Version: 14.4
CVE: CVE-2024-23272
Component: Storage Services
Impact: An attacker may gain access to protected parts of the file system
Description: A logic issue was addressed with improved checks.
apple
CVE-2024-23263MEDIUMCVSS 6.5v14.42024-03-07
CVE-2024-23263 [MEDIUM] CVE-2024-23263: macOS Sonoma 14.4
Apple Security Update: About the security content of macOS Sonoma 14.4
Product: macOS Sonoma
Version: 14.4
CVE: CVE-2024-23263
Component: WebKit
Impact: Processing maliciously crafted web content may prevent Content Security Policy from being enforced
Description: A logic issue was addressed with improved validation.
apple
CVE-2022-42816MEDIUMCVSS 5.5v14.42024-03-07
CVE-2022-42816 [MEDIUM] CVE-2022-42816: macOS Sonoma 14.4
Apple Security Update: About the security content of macOS Sonoma 14.4
Product: macOS Sonoma
Version: 14.4
CVE: CVE-2022-42816
Component: PackageKit
Impact: An app may be able to modify protected parts of the file system
Description: A logic issue was addressed with improved state management.
apple
CVE-2024-23235MEDIUMCVSS 4.7v14.42024-03-07
CVE-2024-23235 [MEDIUM] CVE-2024-23235: macOS Sonoma 14.4
Apple Security Update: About the security content of macOS Sonoma 14.4
Product: macOS Sonoma
Version: 14.4
CVE: CVE-2024-23235
Component: CVE-2024-23235
apple
CVE-2024-54658MEDIUMCVSS 6.5v14.42024-03-07
CVE-2024-54658 [MEDIUM] CVE-2024-54658: macOS Sonoma 14.4
Apple Security Update: About the security content of macOS Sonoma 14.4
Product: macOS Sonoma
Version: 14.4
CVE: CVE-2024-54658
Component: WebKit
Impact: Processing web content may lead to a denial-of-service
Description: The issue was addressed with improved memory handling.
apple
CVE-2024-27888MEDIUMCVSS 5.5v14.42024-03-07
CVE-2024-27888 [MEDIUM] CVE-2024-27888: macOS Sonoma 14.4
Apple Security Update: About the security content of macOS Sonoma 14.4
Product: macOS Sonoma
Version: 14.4
CVE: CVE-2024-27888
Component: PackageKit
Impact: An app may be able to modify protected parts of the file system
Description: A permissions issue was addressed by removing vulnerable code and adding additional checks.
apple
CVE-2022-48554MEDIUMCVSS 5.5v14.42024-03-07
CVE-2022-48554 [MEDIUM] CVE-2022-48554: macOS Sonoma 14.4
Apple Security Update: About the security content of macOS Sonoma 14.4
Product: macOS Sonoma
Version: 14.4
CVE: CVE-2022-48554
Component: CVE-2022-48554
apple
CVE-2024-23293MEDIUMCVSS 4.6v14.42024-03-07
CVE-2024-23293 [MEDIUM] CVE-2024-23293: macOS Sonoma 14.4
Apple Security Update: About the security content of macOS Sonoma 14.4
Product: macOS Sonoma
Version: 14.4
CVE: CVE-2024-23293
Component: Siri
Impact: An attacker with physical access may be able to use Siri to access sensitive user data
Description: This issue was addressed through improved state management.
apple