Apple Macos Ventura vulnerabilities

CVE-2025-43223 [HIGH] CVE-2025-43223: macOS Ventura 13.7.7 Apple Security Update: About the security content of macOS Ventura 13.7.7 Product: macOS Ventura Version: 13.7.7 CVE: CVE-2025-43223 Component: CFNetwork Impact: A non-privileged user may be able to modify restricted network settings Description: A denial-of-service issue was addressed with improved input validation.

CVE-2025-43239 [HIGH] CVE-2025-43239: macOS Ventura 13.7.7 Apple Security Update: About the security content of macOS Ventura 13.7.7 Product: macOS Ventura Version: 13.7.7 CVE: CVE-2025-43239 Component: Single Sign-On Impact: An app may be able to access sensitive user data Description: This issue was addressed with additional entitlement checks.

CVE-2025-31243 [HIGH] CVE-2025-31243: macOS Ventura 13.7.7 Apple Security Update: About the security content of macOS Ventura 13.7.7 Product: macOS Ventura Version: 13.7.7 CVE: CVE-2025-31243 Component: AppleMobileFileIntegrity Impact: An app may be able to gain root privileges Description: A permissions issue was addressed with additional restrictions.

CVE-2025-43249 [HIGH] CVE-2025-43249: macOS Ventura 13.7.7 Apple Security Update: About the security content of macOS Ventura 13.7.7 Product: macOS Ventura Version: 13.7.7 CVE: CVE-2025-43249 Component: AppleMobileFileIntegrity Impact: An app may be able to gain root privileges Description: A logic issue was addressed with improved checks.

CVE-2025-43270 [HIGH] CVE-2025-43270: macOS Ventura 13.7.7 Apple Security Update: About the security content of macOS Ventura 13.7.7 Product: macOS Ventura Version: 13.7.7 CVE: CVE-2025-43270 Component: Notes Impact: An app may gain unauthorized access to Local Network Description: An access issue was addressed with additional sandbox restrictions.

CVE-2025-43187 [HIGH] CVE-2025-43187: macOS Ventura 13.7.7 Apple Security Update: About the security content of macOS Ventura 13.7.7 Product: macOS Ventura Version: 13.7.7 CVE: CVE-2025-43187 Component: Disk Images Impact: Running an hdiutil command may unexpectedly execute arbitrary code Description: This issue was addressed by removing the vulnerable code.

CVE-2025-24224 [HIGH] CVE-2025-24224: macOS Ventura 13.7.7 Apple Security Update: About the security content of macOS Ventura 13.7.7 Product: macOS Ventura Version: 13.7.7 CVE: CVE-2025-24224 Component: Kernel Impact: A remote attacker may be able to cause unexpected system termination Description: The issue was addressed with improved checks.

CVE-2025-43247 [MEDIUM] CVE-2025-43247: macOS Ventura 13.7.7 Apple Security Update: About the security content of macOS Ventura 13.7.7 Product: macOS Ventura Version: 13.7.7 CVE: CVE-2025-43247 Component: PackageKit Impact: A malicious app with root privileges may be able to modify the contents of system files Description: A permissions issue was addressed with additional restrictions.

CVE-2025-43191 [MEDIUM] CVE-2025-43191: macOS Ventura 13.7.7 Apple Security Update: About the security content of macOS Ventura 13.7.7 Product: macOS Ventura Version: 13.7.7 CVE: CVE-2025-43191 Component: Admin Framework Impact: An app may be able to cause a denial-of-service Description: A path handling issue was addressed with improved validation.

CVE-2025-43282 [MEDIUM] CVE-2025-43282: macOS Ventura 13.7.7 Apple Security Update: About the security content of macOS Ventura 13.7.7 Product: macOS Ventura Version: 13.7.7 CVE: CVE-2025-43282 Component: Kernel Impact: An app may be able to cause unexpected system termination Description: A double free issue was addressed with improved memory management.

CVE-2025-43266 [MEDIUM] CVE-2025-43266: macOS Ventura 13.7.7 Apple Security Update: About the security content of macOS Ventura 13.7.7 Product: macOS Ventura Version: 13.7.7 CVE: CVE-2025-43266 Component: NSSpellChecker Impact: An app may be able to break out of its sandbox Description: A permissions issue was addressed with additional restrictions.

CVE-2025-43241 [MEDIUM] CVE-2025-43241: macOS Ventura 13.7.7 Apple Security Update: About the security content of macOS Ventura 13.7.7 Product: macOS Ventura Version: 13.7.7 CVE: CVE-2025-43241 Component: SceneKit Impact: An app may be able to read files outside of its sandbox Description: A permissions issue was addressed with additional restrictions.

CVE-2025-43313 [MEDIUM] CVE-2025-43313: macOS Ventura 13.7.7 Apple Security Update: About the security content of macOS Ventura 13.7.7 Product: macOS Ventura Version: 13.7.7 CVE: CVE-2025-43313 Component: CoreServices Impact: An app may be able to access sensitive user data Description: A logic issue was addressed with improved restrictions.

CVE-2025-43250 [MEDIUM] CVE-2025-43250: macOS Ventura 13.7.7 Apple Security Update: About the security content of macOS Ventura 13.7.7 Product: macOS Ventura Version: 13.7.7 CVE: CVE-2025-43250 Component: SharedFileList Impact: An app may be able to break out of its sandbox Description: A path handling issue was addressed with improved validation.

CVE-2025-43259 [MEDIUM] CVE-2025-43259: macOS Ventura 13.7.7 Apple Security Update: About the security content of macOS Ventura 13.7.7 Product: macOS Ventura Version: 13.7.7 CVE: CVE-2025-43259 Component: WindowServer Impact: An attacker with physical access to a locked device may be able to view sensitive user information Description: This issue was addressed with improved redaction of sensitive information.

CVE-2025-43206 [MEDIUM] CVE-2025-43206: macOS Ventura 13.7.7 Apple Security Update: About the security content of macOS Ventura 13.7.7 Product: macOS Ventura Version: 13.7.7 CVE: CVE-2025-43206 Component: System Settings Impact: An app may be able to access protected user data Description: A parsing issue in the handling of directory paths was addressed with improved path validation.

CVE-2025-43197 [MEDIUM] CVE-2025-43197: macOS Ventura 13.7.7 Apple Security Update: About the security content of macOS Ventura 13.7.7 Product: macOS Ventura Version: 13.7.7 CVE: CVE-2025-43197 Component: Single Sign-On Impact: An app may be able to access sensitive user data Description: This issue was addressed with additional entitlement checks.

CVE-2025-43195 [MEDIUM] CVE-2025-43195: macOS Ventura 13.7.7 Apple Security Update: About the security content of macOS Ventura 13.7.7 Product: macOS Ventura Version: 13.7.7 CVE: CVE-2025-43195 Component: CoreServices Impact: An app may be able to access sensitive user data Description: An issue existed in the handling of environment variables. This issue was addressed with improved validation.

CVE-2025-43210 [MEDIUM] CVE-2025-43210: macOS Ventura 13.7.7 Apple Security Update: About the security content of macOS Ventura 13.7.7 Product: macOS Ventura Version: 13.7.7 CVE: CVE-2025-43210 Component: CoreMedia Impact: Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory Description: An out-of-bounds access issue was addressed with improved bounds checking.

CVE-2025-43225 [MEDIUM] CVE-2025-43225: macOS Ventura 13.7.7 Apple Security Update: About the security content of macOS Ventura 13.7.7 Product: macOS Ventura Version: 13.7.7 CVE: CVE-2025-43225 Component: Notes Impact: An app may be able to access sensitive user data Description: A logging issue was addressed with improved data redaction.