Apple Macos Tahoe vulnerabilities

CVE-2025-43438 [MEDIUM] CVE-2025-43438: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43438 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected Safari crash Description: A use-after-free issue was addressed with improved memory management.

CVE-2025-43426 [MEDIUM] CVE-2025-43426: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43426 Component: Contacts Impact: An app may be able to access sensitive user data Description: A logging issue was addressed with improved data redaction.

CVE-2025-43409 [MEDIUM] CVE-2025-43409: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43409 Component: Spotlight Impact: An app may be able to access sensitive user data Description: A permissions issue was addressed with additional sandbox restrictions.

CVE-2025-43430 [MEDIUM] CVE-2025-43430: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43430 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: This issue was addressed through improved state management.

CVE-2025-43322 [MEDIUM] CVE-2025-43322: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43322 Component: Admin Framework Impact: An app may be able to access user-sensitive data Description: A logic issue was addressed with improved checks.

CVE-2025-43444 [MEDIUM] CVE-2025-43444: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43444 Component: Installer Impact: An app may be able to fingerprint the user Description: A permissions issue was addressed with additional restrictions.

CVE-2025-43427 [MEDIUM] CVE-2025-43427: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43427 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: This issue was addressed through improved state management.

CVE-2025-43469 [MEDIUM] CVE-2025-43469: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43469 Component: NSSpellChecker Impact: An app may be able to access sensitive user data Description: A permissions issue was addressed with additional restrictions.

CVE-2025-43420 [MEDIUM] CVE-2025-43420: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43420 Component: Dock Impact: An app may be able to access sensitive user data Description: A race condition was addressed with improved state handling.

CVE-2025-43477 [MEDIUM] CVE-2025-43477: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43477 Component: Siri Impact: An app may be able to access sensitive user data Description: A privacy issue was addressed with improved private data redaction for log entries.

CVE-2025-43392 [MEDIUM] CVE-2025-43392: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43392 Component: WebKit Canvas Impact: A website may exfiltrate image data cross-origin Description: The issue was addressed with improved handling of caches.

CVE-2025-43385 [MEDIUM] CVE-2025-43385: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43385 Component: Model I/O Impact: Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory Description: An out-of-bounds access issue was addressed with improved bounds checking.

CVE-2025-43497 [MEDIUM] CVE-2025-43497: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43497 Component: BackBoardServices Impact: An app may be able to break out of its sandbox Description: An access issue was addressed with additional sandbox restrictions.

CVE-2025-43429 [MEDIUM] CVE-2025-43429: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43429 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: A buffer overflow was addressed with improved bounds checking.

CVE-2025-43503 [MEDIUM] CVE-2025-43503: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43503 Component: Safari Impact: Visiting a malicious website may lead to user interface spoofing Description: An inconsistent user interface issue was addressed with improved state management.

CVE-2025-43457 [MEDIUM] CVE-2025-43457: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43457 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected Safari crash Description: A use-after-free issue was addressed with improved memory management.

CVE-2025-43465 [MEDIUM] CVE-2025-43465: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43465 Component: ATS Impact: An app may be able to access sensitive user data Description: A parsing issue in the handling of directory paths was addressed with improved path validation.

CVE-2025-43398 [MEDIUM] CVE-2025-43398: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43398 Component: Kernel Impact: An app may be able to cause unexpected system termination Description: The issue was addressed with improved memory handling.

CVE-2025-43481 [MEDIUM] CVE-2025-43481: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43481 Component: Disk Images Impact: An app may be able to break out of its sandbox Description: This issue was addressed with improved checks.

CVE-2025-43396 [MEDIUM] CVE-2025-43396: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43396 Component: Installer Impact: A sandboxed app may be able to access sensitive user data Description: A logic issue was addressed with improved checks.