Apple Macos Tahoe vulnerabilities

CVE-2025-43517 [LOW] CVE-2025-43517: macOS Tahoe 26.2 Apple Security Update: About the security content of macOS Tahoe 26.2 Product: macOS Tahoe Version: 26.2 CVE: CVE-2025-43517 Component: Call History Impact: An app may be able to access protected user data Description: A privacy issue was addressed with improved private data redaction for log entries.

CVE-2025-43516 [LOW] CVE-2025-43516: macOS Tahoe 26.2 Apple Security Update: About the security content of macOS Tahoe 26.2 Product: macOS Tahoe Version: 26.2 CVE: CVE-2025-43516 Component: Voice Control Impact: A user with Voice Control enabled may be able to transcribe another user's activity Description: A session management issue was addressed with improved checks.

CVE-2025-30465 [CRITICAL] CVE-2025-30465: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-30465 Component: Shortcuts Impact: A shortcut may be able to access files that are normally inaccessible to the Shortcuts app Description: A permissions issue was addressed with improved validation.

CVE-2025-43500 [HIGH] CVE-2025-43500: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43500 Component: Sandbox Profiles Impact: An app may be able to access sensitive user data Description: A privacy issue was addressed with improved handling of user preferences.

CVE-2025-43387 [HIGH] CVE-2025-43387: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43387 Component: DiskArbitration Impact: A malicious app may be able to gain root privileges Description: A permissions issue was addressed with additional restrictions.

CVE-2025-43402 [HIGH] CVE-2025-43402: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43402 Component: WindowServer Impact: An app may be able to cause unexpected system termination or corrupt process memory Description: The issue was addressed with improved memory handling.

CVE-2025-43496 [HIGH] CVE-2025-43496: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43496 Component: Mail Drafts Impact: Remote content may be loaded even when the 'Load Remote Images' setting is turned off Description: The issue was addressed by adding additional logic.

CVE-2025-43433 [HIGH] CVE-2025-43433: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43433 Component: WebKit Impact: Processing maliciously crafted web content may lead to memory corruption Description: The issue was addressed with improved memory handling.

CVE-2025-43510 [HIGH] CVE-2025-43510: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43510 Component: Kernel Impact: A malicious application may cause unexpected changes in memory shared between processes Description: A memory corruption issue was addressed with improved lock state checking.

CVE-2025-43506 [HIGH] CVE-2025-43506: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43506 Component: Networking Impact: iCloud Private Relay may not activate when more than one user is logged in at the same time Description: A logic error was addressed with improved error handling.

CVE-2025-43476 [HIGH] CVE-2025-43476: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43476 Component: SharedFileList Impact: An app may be able to break out of its sandbox Description: A permissions issue was addressed with additional restrictions.

CVE-2025-43436 [HIGH] CVE-2025-43436: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43436 Component: CoreServices Impact: An app may be able to enumerate a user's installed apps Description: A permissions issue was addressed with additional restrictions.

CVE-2025-43386 [HIGH] CVE-2025-43386: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43386 Component: Model I/O Impact: Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory Description: An out-of-bounds access issue was addressed with improved bounds checking.

CVE-2025-43502 [HIGH] CVE-2025-43502: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43502 Component: Safari Impact: An app may be able to bypass certain Privacy preferences Description: A privacy issue was addressed by removing sensitive data.

CVE-2025-43494 [HIGH] CVE-2025-43494: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43494 Component: Mail Impact: An attacker may be able to cause a persistent denial-of-service Description: A mail header parsing issue was addressed with improved checks.

CVE-2025-43399 [HIGH] CVE-2025-43399: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43399 Component: Siri Impact: An app may be able to access protected user data Description: This issue was addressed with improved redaction of sensitive information.

CVE-2025-43413 [HIGH] CVE-2025-43413: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43413 Component: Kernel Impact: A malicious application may be able to cause unexpected system termination or write kernel memory Description: A memory corruption issue was addressed with improved memory handling.

CVE-2025-43431 [HIGH] CVE-2025-43431: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43431 Component: WebKit Impact: Processing maliciously crafted web content may lead to memory corruption Description: The issue was addressed with improved memory handling.

CVE-2025-43467 [HIGH] CVE-2025-43467: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43467 Component: Installer Impact: An app may be able to gain root privileges Description: This issue was addressed with improved checks.

CVE-2025-43373 [HIGH] CVE-2025-43373: macOS Tahoe 26.1 Apple Security Update: About the security content of macOS Tahoe 26.1 Product: macOS Tahoe Version: 26.1 CVE: CVE-2025-43373 Component: Wi-Fi Impact: An app may be able to cause unexpected system termination or corrupt kernel memory Description: The issue was addressed with improved memory handling.