Apple Macos Ventura vulnerabilities

CVE-2025-43238 [MEDIUM] CVE-2025-43238: macOS Ventura 13.7.7 Apple Security Update: About the security content of macOS Ventura 13.7.7 Product: macOS Ventura Version: 13.7.7 CVE: CVE-2025-43238 Component: Xsan Impact: An app may be able to cause unexpected system termination Description: An integer overflow was addressed with improved input validation.

CVE-2025-43284 [MEDIUM] CVE-2025-43284: macOS Ventura 13.7.7 Apple Security Update: About the security content of macOS Ventura 13.7.7 Product: macOS Ventura Version: 13.7.7 CVE: CVE-2025-43284 Component: GPU Drivers Impact: An app may be able to cause unexpected system termination Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2025-43236 [LOW] CVE-2025-43236: macOS Ventura 13.7.7 Apple Security Update: About the security content of macOS Ventura 13.7.7 Product: macOS Ventura Version: 13.7.7 CVE: CVE-2025-43236 Component: Power Management Impact: An attacker may be able to cause unexpected app termination Description: A type confusion issue was addressed with improved memory handling.

CVE-2025-43255 [LOW] CVE-2025-43255: macOS Ventura 13.7.7 Apple Security Update: About the security content of macOS Ventura 13.7.7 Product: macOS Ventura Version: 13.7.7 CVE: CVE-2025-43255 Component: GPU Drivers Impact: An app may be able to cause unexpected system termination Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2025-30448 [CRITICAL] CVE-2025-30448: macOS Ventura 13.7.6 Apple Security Update: About the security content of macOS Ventura 13.7.6 Product: macOS Ventura Version: 13.7.6 CVE: CVE-2025-30448 Component: DiskArbitration Impact: An app may be able to gain root privileges Description: A permissions issue was addressed with additional restrictions.

CVE-2025-31208 [HIGH] CVE-2025-31208: macOS Ventura 13.7.6 Apple Security Update: About the security content of macOS Ventura 13.7.6 Product: macOS Ventura Version: 13.7.6 CVE: CVE-2025-31208 Component: CoreAudio Impact: Parsing a file may lead to an unexpected app termination Description: The issue was addressed with improved checks.

CVE-2025-31222 [HIGH] CVE-2025-31222: macOS Ventura 13.7.6 Apple Security Update: About the security content of macOS Ventura 13.7.6 Product: macOS Ventura Version: 13.7.6 CVE: CVE-2025-31222 Component: Libinfo Impact: An app may be able to bypass ASLR Description: The issue was addressed with improved checks.

CVE-2025-31221 [HIGH] CVE-2025-31221: macOS Ventura 13.7.6 Apple Security Update: About the security content of macOS Ventura 13.7.6 Product: macOS Ventura Version: 13.7.6 CVE: CVE-2025-31221 Component: Security Impact: A remote attacker may be able to leak memory Description: An integer overflow was addressed with improved input validation.

CVE-2025-30453 [HIGH] CVE-2025-30453: macOS Ventura 13.7.6 Apple Security Update: About the security content of macOS Ventura 13.7.6 Product: macOS Ventura Version: 13.7.6 CVE: CVE-2025-30453 Component: DiskArbitration Impact: A malicious app may be able to gain root privileges Description: The issue was addressed with additional permissions checks.

CVE-2025-24258 [HIGH] CVE-2025-24258: macOS Ventura 13.7.6 Apple Security Update: About the security content of macOS Ventura 13.7.6 Product: macOS Ventura Version: 13.7.6 CVE: CVE-2025-24258 Component: DiskArbitration Impact: An app may be able to gain root privileges Description: A permissions issue was addressed with additional restrictions.

CVE-2025-31232 [HIGH] CVE-2025-31232: macOS Ventura 13.7.6 Apple Security Update: About the security content of macOS Ventura 13.7.6 Product: macOS Ventura Version: 13.7.6 CVE: CVE-2025-31232 Component: Installer Impact: A sandboxed app may be able to access sensitive user data Description: A logic issue was addressed with improved checks.

CVE-2025-31247 [HIGH] CVE-2025-31247: macOS Ventura 13.7.6 Apple Security Update: About the security content of macOS Ventura 13.7.6 Product: macOS Ventura Version: 13.7.6 CVE: CVE-2025-31247 Component: SharedFileList Impact: An attacker may gain access to protected parts of the file system Description: A logic issue was addressed with improved state management.

CVE-2025-31240 [HIGH] CVE-2025-31240: macOS Ventura 13.7.6 Apple Security Update: About the security content of macOS Ventura 13.7.6 Product: macOS Ventura Version: 13.7.6 CVE: CVE-2025-31240 Component: About Apple security updates Impact: Mounting a maliciously crafted AFP network share may lead to system termination Description: This issue was addressed with improved checks.

CVE-2025-31224 [HIGH] CVE-2025-31224: macOS Ventura 13.7.6 Apple Security Update: About the security content of macOS Ventura 13.7.6 Product: macOS Ventura Version: 13.7.6 CVE: CVE-2025-31224 Component: Sandbox Impact: An app may be able to bypass certain Privacy preferences Description: A logic issue was addressed with improved checks.

CVE-2025-31213 [HIGH] CVE-2025-31213: macOS Ventura 13.7.6 Apple Security Update: About the security content of macOS Ventura 13.7.6 Product: macOS Ventura Version: 13.7.6 CVE: CVE-2025-31213 Component: Security Impact: An app may be able to access associated usernames and websites in a user's iCloud Keychain Description: A logging issue was addressed with improved data redaction.

CVE-2025-31237 [HIGH] CVE-2025-31237: macOS Ventura 13.7.6 Apple Security Update: About the security content of macOS Ventura 13.7.6 Product: macOS Ventura Version: 13.7.6 CVE: CVE-2025-31237 Component: About Apple security updates Impact: Mounting a maliciously crafted AFP network share may lead to system termination Description: This issue was addressed with improved checks.

CVE-2025-31219 [HIGH] CVE-2025-31219: macOS Ventura 13.7.6 Apple Security Update: About the security content of macOS Ventura 13.7.6 Product: macOS Ventura Version: 13.7.6 CVE: CVE-2025-31219 Component: Kernel Impact: An attacker may be able to cause unexpected system termination or corrupt kernel memory Description: The issue was addressed with improved memory handling.

CVE-2025-30442 [HIGH] CVE-2025-30442: macOS Ventura 13.7.6 Apple Security Update: About the security content of macOS Ventura 13.7.6 Product: macOS Ventura Version: 13.7.6 CVE: CVE-2025-30442 Component: SoftwareUpdate Impact: An app may be able to gain elevated privileges Description: The issue was addressed with improved input sanitization.

CVE-2024-8176 [HIGH] CVE-2024-8176: macOS Ventura 13.7.6 Apple Security Update: About the security content of macOS Ventura 13.7.6 Product: macOS Ventura Version: 13.7.6 CVE: CVE-2024-8176 Component: CVE-2024-8176

CVE-2025-24274 [HIGH] CVE-2025-24274: macOS Ventura 13.7.6 Apple Security Update: About the security content of macOS Ventura 13.7.6 Product: macOS Ventura Version: 13.7.6 CVE: CVE-2025-24274 Component: Mobile Device Service Impact: A malicious app may be able to gain root privileges Description: An input validation issue was addressed by removing the vulnerable code.