Apple Macos Sonoma vulnerabilities

959 known vulnerabilities affecting apple/macos_sonoma.

Total CVEs
959
CISA KEV
11
actively exploited
Public exploits
3
Exploited in wild
6
Severity breakdown
CRITICAL73HIGH289MEDIUM533LOW63UNKNOWN1

Vulnerabilities

Page 7 of 48
CVE-2025-43286HIGHCVSS 7.8v14.82025-09-15
CVE-2025-43286 [HIGH] CVE-2025-43286: macOS Sonoma 14.8 Apple Security Update: About the security content of macOS Sonoma 14.8 Product: macOS Sonoma Version: 14.8 CVE: CVE-2025-43286 Component: SharedFileList Impact: An app may be able to break out of its sandbox Description: A permissions issue was addressed with additional restrictions.
apple
CVE-2025-43298HIGHCVSS 7.8v14.82025-09-15
CVE-2025-43298 [HIGH] CVE-2025-43298: macOS Sonoma 14.8 Apple Security Update: About the security content of macOS Sonoma 14.8 Product: macOS Sonoma Version: 14.8 CVE: CVE-2025-43298 Component: PackageKit Impact: An app may be able to gain root privileges Description: A parsing issue in the handling of directory paths was addressed with improved path validation.
apple
CVE-2025-31259HIGHCVSS 7.8v14.82025-09-15
CVE-2025-31259 [HIGH] CVE-2025-31259: macOS Sonoma 14.8 Apple Security Update: About the security content of macOS Sonoma 14.8 Product: macOS Sonoma Version: 14.8 CVE: CVE-2025-31259 Component: Screenshots Impact: An app may be able to capture a screenshot of an app entering or exiting full screen mode Description: A privacy issue was addressed with improved checks.
apple
CVE-2025-43277HIGHCVSS 7.8v14.82025-09-15
CVE-2025-43277 [HIGH] CVE-2025-43277: macOS Sonoma 14.8 Apple Security Update: About the security content of macOS Sonoma 14.8 Product: macOS Sonoma Version: 14.8 CVE: CVE-2025-43277 Component: CoreAudio Impact: Processing a maliciously crafted audio file may lead to memory corruption Description: The issue was addressed with improved memory handling.
apple
CVE-2025-43341HIGHCVSS 7.8v14.82025-09-15
CVE-2025-43341 [HIGH] CVE-2025-43341: macOS Sonoma 14.8 Apple Security Update: About the security content of macOS Sonoma 14.8 Product: macOS Sonoma Version: 14.8 CVE: CVE-2025-43341 Component: Storage Impact: An app may be able to gain root privileges Description: A permissions issue was addressed with additional restrictions.
apple
CVE-2025-43304HIGHCVSS 7.0v14.82025-09-15
CVE-2025-43304 [HIGH] CVE-2025-43304: macOS Sonoma 14.8 Apple Security Update: About the security content of macOS Sonoma 14.8 Product: macOS Sonoma Version: 14.8 CVE: CVE-2025-43304 Component: StorageKit Impact: An app may be able to gain root privileges Description: A race condition was addressed with improved state handling.
apple
CVE-2025-43353MEDIUMCVSS 5.5v14.82025-09-15
CVE-2025-43353 [MEDIUM] CVE-2025-43353: macOS Sonoma 14.8 Apple Security Update: About the security content of macOS Sonoma 14.8 Product: macOS Sonoma Version: 14.8 CVE: CVE-2025-43353 Component: Libinfo Impact: Processing a maliciously crafted string may lead to heap corruption Description: The issue was addressed with improved bounds checks.
apple
CVE-2025-43231MEDIUMCVSS 5.5v14.82025-09-15
CVE-2025-43231 [MEDIUM] CVE-2025-43231: macOS Sonoma 14.8 Apple Security Update: About the security content of macOS Sonoma 14.8 Product: macOS Sonoma Version: 14.8 CVE: CVE-2025-43231 Component: LaunchServices Impact: An app may be able to access user-sensitive data Description: A logic issue was addressed with improved checks.
apple
CVE-2025-43319MEDIUMCVSS 5.5v14.82025-09-15
CVE-2025-43319 [MEDIUM] CVE-2025-43319: macOS Sonoma 14.8 Apple Security Update: About the security content of macOS Sonoma 14.8 Product: macOS Sonoma Version: 14.8 CVE: CVE-2025-43319 Component: MediaLibrary Impact: An app may be able to access protected user data Description: This issue was addressed by removing the vulnerable code.
apple
CVE-2025-43314MEDIUMCVSS 5.5v14.82025-09-15
CVE-2025-43314 [MEDIUM] CVE-2025-43314: macOS Sonoma 14.8 Apple Security Update: About the security content of macOS Sonoma 14.8 Product: macOS Sonoma Version: 14.8 CVE: CVE-2025-43314 Component: StorageKit Impact: An app may be able to access sensitive user data Description: A parsing issue in the handling of directory paths was addressed with improved path validation.
apple
CVE-2025-31269MEDIUMCVSS 5.5v14.82025-09-15
CVE-2025-31269 [MEDIUM] CVE-2025-31269: macOS Sonoma 14.8 Apple Security Update: About the security content of macOS Sonoma 14.8 Product: macOS Sonoma Version: 14.8 CVE: CVE-2025-31269 Component: Printing Impact: An app may be able to access protected user data Description: A permissions issue was addressed with additional restrictions.
apple
CVE-2025-43295MEDIUMCVSS 5.5v14.82025-09-15
CVE-2025-43295 [MEDIUM] CVE-2025-43295: macOS Sonoma 14.8 Apple Security Update: About the security content of macOS Sonoma 14.8 Product: macOS Sonoma Version: 14.8 CVE: CVE-2025-43295 Component: LaunchServices Impact: An app may be able to access user-sensitive data Description: A logic issue was addressed with improved checks.
apple
CVE-2025-43305MEDIUMCVSS 5.5v14.82025-09-15
CVE-2025-43305 [MEDIUM] CVE-2025-43305: macOS Sonoma 14.8 Apple Security Update: About the security content of macOS Sonoma 14.8 Product: macOS Sonoma Version: 14.8 CVE: CVE-2025-43305 Component: CoreServices Impact: A malicious app may be able to access private information Description: A logic issue was addressed with improved checks.
apple
CVE-2025-43326MEDIUMCVSS 5.5v14.82025-09-15
CVE-2025-43326 [MEDIUM] CVE-2025-43326: macOS Sonoma 14.8 Apple Security Update: About the security content of macOS Sonoma 14.8 Product: macOS Sonoma Version: 14.8 CVE: CVE-2025-43326 Component: GPU Drivers Impact: An app may be able to access sensitive user data Description: An out-of-bounds read was addressed with improved bounds checking.
apple
CVE-2025-24197MEDIUMCVSS 5.5v14.82025-09-15
CVE-2025-24197 [MEDIUM] CVE-2025-24197: macOS Sonoma 14.8 Apple Security Update: About the security content of macOS Sonoma 14.8 Product: macOS Sonoma Version: 14.8 CVE: CVE-2025-24197 Component: Spotlight Impact: An app may be able to access sensitive user data Description: A logic issue was addressed with improved checks.
apple
CVE-2025-40909MEDIUMCVSS 5.9v14.82025-09-15
CVE-2025-40909 [MEDIUM] CVE-2025-40909: macOS Sonoma 14.8 Apple Security Update: About the security content of macOS Sonoma 14.8 Product: macOS Sonoma Version: 14.8 CVE: CVE-2025-40909 Component: CVE-2025-40909
apple
CVE-2025-43285MEDIUMCVSS 5.5v14.82025-09-15
CVE-2025-43285 [MEDIUM] CVE-2025-43285: macOS Sonoma 14.8 Apple Security Update: About the security content of macOS Sonoma 14.8 Product: macOS Sonoma Version: 14.8 CVE: CVE-2025-43285 Component: AppSandbox Impact: An app may be able to access protected user data Description: A permissions issue was addressed with additional restrictions.
apple
CVE-2025-43291MEDIUMCVSS 5.5v14.82025-09-15
CVE-2025-43291 [MEDIUM] CVE-2025-43291: macOS Sonoma 14.8 Apple Security Update: About the security content of macOS Sonoma 14.8 Product: macOS Sonoma Version: 14.8 CVE: CVE-2025-43291 Component: SharedFileList Impact: An app may be able to modify protected parts of the file system Description: A permissions issue was addressed by removing the vulnerable code.
apple
CVE-2025-43310MEDIUMCVSS 4.4v14.82025-09-15
CVE-2025-43310 [MEDIUM] CVE-2025-43310: macOS Sonoma 14.8 Apple Security Update: About the security content of macOS Sonoma 14.8 Product: macOS Sonoma Version: 14.8 CVE: CVE-2025-43310 Component: WindowServer Impact: An app may be able to trick a user into copying sensitive data to the pasteboard Description: A configuration issue was addressed with additional restrictions.
apple
CVE-2025-43312MEDIUMCVSS 5.5v14.82025-09-15
CVE-2025-43312 [MEDIUM] CVE-2025-43312: macOS Sonoma 14.8 Apple Security Update: About the security content of macOS Sonoma 14.8 Product: macOS Sonoma Version: 14.8 CVE: CVE-2025-43312 Component: AMD Impact: An app may be able to cause unexpected system termination Description: A buffer overflow was addressed with improved bounds checking.
apple
← Previous7 / 48Next →