Apple Macos Sonoma vulnerabilities

CVE-2025-43243 [CRITICAL] CVE-2025-43243: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43243 Component: Software Update Impact: An app may be able to modify protected parts of the file system Description: A permissions issue was addressed with additional restrictions.

CVE-2025-43233 [CRITICAL] CVE-2025-43233: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43233 Component: Security Impact: A malicious app acting as a HTTPS proxy could get access to sensitive user data Description: This issue was addressed with improved access restrictions.

CVE-2025-43220 [CRITICAL] CVE-2025-43220: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43220 Component: CFNetwork Impact: A non-privileged user may be able to modify restricted network settings Description: A denial-of-service issue was addressed with improved input validation.

CVE-2025-43199 [CRITICAL] CVE-2025-43199: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43199 Component: CoreServices Impact: A malicious app may be able to gain root privileges Description: A permissions issue was addressed by removing the vulnerable code.

CVE-2025-43193 [CRITICAL] CVE-2025-43193: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43193 Component: SecurityAgent Impact: An app may be able to cause a denial-of-service Description: The issue was addressed with improved memory handling.

CVE-2025-31279 [CRITICAL] CVE-2025-31279: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-31279 Component: Find My Impact: An app may be able to fingerprint the user Description: A permissions issue was addressed with additional restrictions.

CVE-2025-43261 [CRITICAL] CVE-2025-43261: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43261 Component: File Bookmark Impact: An app may be able to break out of its sandbox Description: A logic issue was addressed with improved checks.

CVE-2025-43194 [CRITICAL] CVE-2025-43194: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43194 Component: PackageKit Impact: An app may be able to modify protected parts of the file system Description: The issue was addressed with improved checks.

CVE-2025-43222 [CRITICAL] CVE-2025-43222: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43222 Component: CFNetwork Impact: An attacker may be able to cause unexpected app termination Description: A use-after-free issue was addressed by removing the vulnerable code.

CVE-2025-43186 [CRITICAL] CVE-2025-43186: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43186 Component: Admin Framework Impact: An app may be able to cause a denial-of-service Description: A path handling issue was addressed with improved validation.

CVE-2025-43253 [CRITICAL] CVE-2025-43253: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43253 Component: AppleMobileFileIntegrity Impact: A malicious app may be able to launch arbitrary binaries on a trusted device Description: This issue was addressed with improved input validation.

CVE-2025-43209 [CRITICAL] CVE-2025-43209: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43209 Component: ICU Impact: Processing maliciously crafted web content may lead to an unexpected Safari crash Description: An out-of-bounds access issue was addressed with improved bounds checking.

CVE-2025-43189 [CRITICAL] CVE-2025-43189: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43189 Component: WebContentFilter Impact: A malicious app may be able to read kernel memory Description: This issue was addressed with improved memory handling.

CVE-2025-43275 [CRITICAL] CVE-2025-43275: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43275 Component: NetAuth Impact: An app may be able to break out of its sandbox Description: A race condition was addressed with additional validation.

CVE-2025-43245 [CRITICAL] CVE-2025-43245: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43245 Component: AppleMobileFileIntegrity Impact: An app may be able to access protected user data Description: A downgrade issue was addressed with additional code-signing restrictions.

CVE-2025-43244 [CRITICAL] CVE-2025-43244: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43244 Component: AMD Impact: An app may be able to cause unexpected system termination Description: A race condition was addressed with improved state handling.

CVE-2025-43223 [HIGH] CVE-2025-43223: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43223 Component: CFNetwork Impact: A non-privileged user may be able to modify restricted network settings Description: A denial-of-service issue was addressed with improved input validation.

CVE-2025-43248 [HIGH] CVE-2025-43248: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43248 Component: AppleMobileFileIntegrity Impact: A malicious app may be able to gain root privileges Description: A logic issue was addressed with improved restrictions.

CVE-2025-43187 [HIGH] CVE-2025-43187: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-43187 Component: Disk Images Impact: Running an hdiutil command may unexpectedly execute arbitrary code Description: This issue was addressed by removing the vulnerable code.

CVE-2025-24119 [HIGH] CVE-2025-24119: macOS Sonoma 14.7.7 Apple Security Update: About the security content of macOS Sonoma 14.7.7 Product: macOS Sonoma Version: 14.7.7 CVE: CVE-2025-24119 Component: Finder Impact: An app may be able to execute arbitrary code out of its sandbox or with certain elevated privileges Description: This issue was addressed through improved state management.