Apple Macos Ventura vulnerabilities

CVE-2024-54497 [MEDIUM] CVE-2024-54497: macOS Ventura 13.7.3 Apple Security Update: About the security content of macOS Ventura 13.7.3 Product: macOS Ventura Version: 13.7.3 CVE: CVE-2024-54497 Component: QuartzCore Impact: Processing web content may lead to a denial-of-service Description: The issue was addressed with improved checks.

CVE-2025-24123 [MEDIUM] CVE-2025-24123: macOS Ventura 13.7.3 Apple Security Update: About the security content of macOS Ventura 13.7.3 Product: macOS Ventura Version: 13.7.3 CVE: CVE-2025-24123 Component: CoreMedia Impact: Parsing a file may lead to an unexpected app termination Description: The issue was addressed with improved checks.

CVE-2025-43374 [MEDIUM] CVE-2025-43374: macOS Ventura 13.7.3 Apple Security Update: About the security content of macOS Ventura 13.7.3 Product: macOS Ventura Version: 13.7.3 CVE: CVE-2025-43374 Component: Wi-Fi Impact: An attacker in physical proximity may be able to cause an out-of-bounds read in kernel memory Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2025-24185 [MEDIUM] CVE-2025-24185: macOS Ventura 13.7.3 Apple Security Update: About the security content of macOS Ventura 13.7.3 Product: macOS Ventura Version: 13.7.3 CVE: CVE-2025-24185 Component: Security Impact: An app may be able to access protected user data Description: This issue was addressed with improved validation of symlinks.

CVE-2025-24124 [MEDIUM] CVE-2025-24124: macOS Ventura 13.7.3 Apple Security Update: About the security content of macOS Ventura 13.7.3 Product: macOS Ventura Version: 13.7.3 CVE: CVE-2025-24124 Component: CoreMedia Impact: Parsing a file may lead to an unexpected app termination Description: The issue was addressed with improved checks.

CVE-2025-24122 [MEDIUM] CVE-2025-24122: macOS Ventura 13.7.3 Apple Security Update: About the security content of macOS Ventura 13.7.3 Product: macOS Ventura Version: 13.7.3 CVE: CVE-2025-24122 Component: AppleMobileFileIntegrity Impact: An app may be able to modify protected parts of the file system Description: A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions.

CVE-2025-24086 [MEDIUM] CVE-2025-24086: macOS Ventura 13.7.3 Apple Security Update: About the security content of macOS Ventura 13.7.3 Product: macOS Ventura Version: 13.7.3 CVE: CVE-2025-24086 Component: ImageIO Impact: Processing an image may lead to a denial-of-service Description: The issue was addressed with improved memory handling.

CVE-2025-24183 [MEDIUM] CVE-2025-24183: macOS Ventura 13.7.3 Apple Security Update: About the security content of macOS Ventura 13.7.3 Product: macOS Ventura Version: 13.7.3 CVE: CVE-2025-24183 Component: Perl Impact: A local user may be able to modify protected parts of the file system Description: The issue was addressed with improved checks.

CVE-2025-24138 [MEDIUM] CVE-2025-24138: macOS Ventura 13.7.3 Apple Security Update: About the security content of macOS Ventura 13.7.3 Product: macOS Ventura Version: 13.7.3 CVE: CVE-2025-24138 Component: Spotlight Impact: A malicious application may be able to leak sensitive user information Description: This issue was addressed through improved state management.

CVE-2025-24106 [MEDIUM] CVE-2025-24106: macOS Ventura 13.7.3 Apple Security Update: About the security content of macOS Ventura 13.7.3 Product: macOS Ventura Version: 13.7.3 CVE: CVE-2025-24106 Component: Audio Impact: An app may be able to cause unexpected system termination Description: This issue was addressed with additional entitlement checks.

CVE-2025-24109 [MEDIUM] CVE-2025-24109: macOS Ventura 13.7.3 Apple Security Update: About the security content of macOS Ventura 13.7.3 Product: macOS Ventura Version: 13.7.3 CVE: CVE-2025-24109 Component: AppleMobileFileIntegrity Impact: An app may be able to access sensitive user data Description: A downgrade issue was addressed with additional code-signing restrictions.

CVE-2024-44172 [LOW] CVE-2024-44172: macOS Ventura 13.7.3 Apple Security Update: About the security content of macOS Ventura 13.7.3 Product: macOS Ventura Version: 13.7.3 CVE: CVE-2024-44172 Component: Contacts Impact: An app may be able to access contacts Description: A privacy issue was addressed with improved private data redaction for log entries.

CVE-2025-24100 [LOW] CVE-2025-24100: macOS Ventura 13.7.3 Apple Security Update: About the security content of macOS Ventura 13.7.3 Product: macOS Ventura Version: 13.7.3 CVE: CVE-2025-24100 Component: AppleMobileFileIntegrity Impact: An app may be able to access information about a user's contacts Description: A logic issue was addressed with improved restrictions.

CVE-2025-24121 [LOW] CVE-2025-24121: macOS Ventura 13.7.3 Apple Security Update: About the security content of macOS Ventura 13.7.3 Product: macOS Ventura Version: 13.7.3 CVE: CVE-2025-24121 Component: AppleMobileFileIntegrity Impact: An app may be able to modify protected parts of the file system Description: A logic issue was addressed with improved checks.

CVE-2024-44156 [HIGH] CVE-2024-44156: macOS Ventura 13.7.1 Apple Security Update: About the security content of macOS Ventura 13.7.1 Product: macOS Ventura Version: 13.7.1 CVE: CVE-2024-44156 Component: PackageKit Impact: An app may be able to bypass Privacy preferences Description: A path deletion vulnerability was addressed by preventing vulnerable code from running with privileges.

CVE-2024-44255 [HIGH] CVE-2024-44255: macOS Ventura 13.7.1 Apple Security Update: About the security content of macOS Ventura 13.7.1 Product: macOS Ventura Version: 13.7.1 CVE: CVE-2024-44255 Component: App Support Impact: A malicious app may be able to run arbitrary shortcuts without user consent Description: A path handling issue was addressed with improved logic.

CVE-2024-44122 [HIGH] CVE-2024-44122: macOS Ventura 13.7.1 Apple Security Update: About the security content of macOS Ventura 13.7.1 Product: macOS Ventura Version: 13.7.1 CVE: CVE-2024-44122 Component: LaunchServices Impact: An application may be able to break out of its sandbox Description: A logic issue was addressed with improved checks.

CVE-2024-44256 [HIGH] CVE-2024-44256: macOS Ventura 13.7.1 Apple Security Update: About the security content of macOS Ventura 13.7.1 Product: macOS Ventura Version: 13.7.1 CVE: CVE-2024-44256 Component: Messages Impact: An app may be able to break out of its sandbox Description: The issue was addressed with improved input sanitization.

CVE-2024-44159 [HIGH] CVE-2024-44159: macOS Ventura 13.7.1 Apple Security Update: About the security content of macOS Ventura 13.7.1 Product: macOS Ventura Version: 13.7.1 CVE: CVE-2024-44159 Component: PackageKit Impact: An app may be able to bypass Privacy preferences Description: A path deletion vulnerability was addressed by preventing vulnerable code from running with privileges.

CVE-2024-44270 [HIGH] CVE-2024-44270: macOS Ventura 13.7.1 Apple Security Update: About the security content of macOS Ventura 13.7.1 Product: macOS Ventura Version: 13.7.1 CVE: CVE-2024-44270 Component: AppleMobileFileIntegrity Impact: A sandboxed process may be able to circumvent sandbox restrictions Description: A logic issue was addressed with improved validation.