Apple Macos Tahoe vulnerabilities

CVE-2025-43411 [MEDIUM] CVE-2025-43411: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43411 Component: PackageKit Impact: An app may be able to access user-sensitive data Description: This issue was addressed with additional entitlement checks.

CVE-2025-43397 [MEDIUM] CVE-2025-43397: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43397 Component: SoftwareUpdate Impact: An app may be able to cause a denial-of-service Description: A permissions issue was addressed by removing the vulnerable code.

CVE-2025-43508 [MEDIUM] CVE-2025-43508: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43508 Component: Phone Impact: An app may be able to access sensitive user data Description: A logging issue was addressed with improved data redaction.

CVE-2025-43479 [MEDIUM] CVE-2025-43479: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43479 Component: CoreServices Impact: An app may be able to access sensitive user data Description: A permissions issue was addressed with additional restrictions.

CVE-2025-43425 [MEDIUM] CVE-2025-43425: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43425 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: The issue was addressed with improved memory handling.

CVE-2025-43455 [MEDIUM] CVE-2025-43455: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43455 Impact: A malicious app may be able to take a screenshot of sensitive information in embedded views Description: A privacy issue was addressed with improved checks.

CVE-2025-43336 [MEDIUM] CVE-2025-43336: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43336 Component: SoftwareUpdate Impact: An app with root privileges may be able to access private information Description: A permissions issue was addressed with additional restrictions.

CVE-2025-43395 [LOW] CVE-2025-43395: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43395 Component: CloudKit Impact: An app may be able to break out of its sandbox Description: This issue was addressed with improved validation of symlinks.

CVE-2025-43423 [LOW] CVE-2025-43423: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43423 Component: Audio Impact: An attacker with physical access to an unlocked device paired with a Mac may be able to view sensitive user information in system logging Description: A logging issue was addressed with improved data redaction.

CVE-2025-43408 [LOW] CVE-2025-43408: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43408 Component: Share Sheet Impact: An attacker with physical access may be able to access contacts from the lock screen Description: This issue was addressed by restricting options offered on a locked device.

CVE-2025-32462 [LOW] CVE-2025-32462: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-32462 Component: CVE-2025-32462 Impact: An app may be able to access user-sensitive data Description: This issue was addressed with additional entitlement checks.

CVE-2025-43334 [LOW] CVE-2025-43334: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43334 Component: CVE-2025-32462 Impact: An app may be able to access user-sensitive data Description: This issue was addressed with additional entitlement checks.

CVE-2025-43404 [LOW] CVE-2025-43404: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43404 Component: Sandbox Impact: An app may be able to access sensitive user data Description: A permissions issue was addressed with additional sandbox restrictions.

CVE-2025-43400 [MEDIUM] CVE-2025-43400: macOS Tahoe 26.0.1 Apple Security Update: About the security content of macOS Tahoe 26.0.1 Product: macOS Tahoe Version: 26.0.1 CVE: CVE-2025-43400 Component: FontParser Impact: Processing a maliciously crafted font may lead to unexpected app termination or corrupt process memory Description: An out-of-bounds write issue was addressed with improved bounds checking.

CVE-2025-43359 [CRITICAL] CVE-2025-43359: macOS Tahoe 26 Apple Security Update: About the security content of macOS Tahoe 26 Product: macOS Tahoe Version: 26 CVE: CVE-2025-43359 Component: Kernel Impact: A UDP server socket bound to a local interface may become bound to all interfaces Description: A logic issue was addressed with improved state management.

CVE-2025-31255 [CRITICAL] CVE-2025-31255: macOS Tahoe 26 Apple Security Update: About the security content of macOS Tahoe 26 Product: macOS Tahoe Version: 26 CVE: CVE-2025-31255 Component: IOKit Impact: An app may be able to access sensitive user data Description: An authorization issue was addressed with improved state management.

CVE-2025-43342 [CRITICAL] CVE-2025-43342: macOS Tahoe 26 Apple Security Update: About the security content of macOS Tahoe 26 Product: macOS Tahoe Version: 26 CVE: CVE-2025-43342 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: A correctness issue was addressed with improved checks.

CVE-2025-43347 [CRITICAL] CVE-2025-43347: macOS Tahoe 26 Apple Security Update: About the security content of macOS Tahoe 26 Product: macOS Tahoe Version: 26 CVE: CVE-2025-43347 Component: System Impact: An input validation issue was addressed Description: This issue was addressed by removing the vulnerable code.

CVE-2025-43343 [CRITICAL] CVE-2025-43343: macOS Tahoe 26 Apple Security Update: About the security content of macOS Tahoe 26 Product: macOS Tahoe Version: 26 CVE: CVE-2025-43343 Component: WebKit Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: The issue was addressed with improved memory handling.

CVE-2024-27280 [CRITICAL] CVE-2024-27280: macOS Tahoe 26 Apple Security Update: About the security content of macOS Tahoe 26 Product: macOS Tahoe Version: 26 CVE: CVE-2024-27280 Component: CVE-2024-27280