Apple Macos Ventura vulnerabilities

CVE-2025-31241 [MEDIUM] CVE-2025-31241: macOS Ventura 13.7.6 Apple Security Update: About the security content of macOS Ventura 13.7.6 Product: macOS Ventura Version: 13.7.6 CVE: CVE-2025-31241 Component: Kernel Impact: A remote attacker may cause an unexpected app termination Description: A double free issue was addressed with improved memory management.

CVE-2025-24144 [MEDIUM] CVE-2025-24144: macOS Ventura 13.7.6 Apple Security Update: About the security content of macOS Ventura 13.7.6 Product: macOS Ventura Version: 13.7.6 CVE: CVE-2025-24144 Component: Kernel Impact: An app may be able to leak sensitive kernel state Description: An information disclosure issue was addressed by removing the vulnerable code.

CVE-2025-31239 [MEDIUM] CVE-2025-31239: macOS Ventura 13.7.6 Apple Security Update: About the security content of macOS Ventura 13.7.6 Product: macOS Ventura Version: 13.7.6 CVE: CVE-2025-31239 Component: CoreMedia Impact: Parsing a file may lead to an unexpected app termination Description: A use-after-free issue was addressed with improved memory management.

CVE-2025-31245 [MEDIUM] CVE-2025-31245: macOS Ventura 13.7.6 Apple Security Update: About the security content of macOS Ventura 13.7.6 Product: macOS Ventura Version: 13.7.6 CVE: CVE-2025-31245 Component: Pro Res Impact: An app may be able to cause unexpected system termination Description: The issue was addressed with improved checks.

CVE-2025-31235 [MEDIUM] CVE-2025-31235: macOS Ventura 13.7.6 Apple Security Update: About the security content of macOS Ventura 13.7.6 Product: macOS Ventura Version: 13.7.6 CVE: CVE-2025-31235 Component: Audio Impact: An app may be able to cause unexpected system termination Description: A double free issue was addressed with improved memory management.

CVE-2025-31251 [MEDIUM] CVE-2025-31251: macOS Ventura 13.7.6 Apple Security Update: About the security content of macOS Ventura 13.7.6 Product: macOS Ventura Version: 13.7.6 CVE: CVE-2025-31251 Component: AppleJPEG Impact: Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory Description: The issue was addressed with improved input sanitization.

CVE-2025-24142 [MEDIUM] CVE-2025-24142: macOS Ventura 13.7.6 Apple Security Update: About the security content of macOS Ventura 13.7.6 Product: macOS Ventura Version: 13.7.6 CVE: CVE-2025-24142 Component: Notification Center Impact: An app may be able to access sensitive user data Description: A privacy issue was addressed with improved private data redaction for log entries.

CVE-2025-30440 [MEDIUM] CVE-2025-30440: macOS Ventura 13.7.6 Apple Security Update: About the security content of macOS Ventura 13.7.6 Product: macOS Ventura Version: 13.7.6 CVE: CVE-2025-30440 Component: Libinfo Impact: An app may be able to bypass ASLR Description: The issue was addressed with improved checks.

CVE-2025-31209 [MEDIUM] CVE-2025-31209: macOS Ventura 13.7.6 Apple Security Update: About the security content of macOS Ventura 13.7.6 Product: macOS Ventura Version: 13.7.6 CVE: CVE-2025-31209 Component: CoreGraphics Impact: Parsing a file may lead to disclosure of user information Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2025-24155 [MEDIUM] CVE-2025-24155: macOS Ventura 13.7.6 Apple Security Update: About the security content of macOS Ventura 13.7.6 Product: macOS Ventura Version: 13.7.6 CVE: CVE-2025-24155 Component: WebContentFilter Impact: An app may be able to disclose kernel memory Description: The issue was addressed with improved memory handling.

CVE-2025-31220 [MEDIUM] CVE-2025-31220: macOS Ventura 13.7.6 Apple Security Update: About the security content of macOS Ventura 13.7.6 Product: macOS Ventura Version: 13.7.6 CVE: CVE-2025-31220 Component: Weather Impact: A malicious app may be able to read sensitive location information Description: A privacy issue was addressed by removing sensitive data.

CVE-2025-31233 [MEDIUM] CVE-2025-31233: macOS Ventura 13.7.6 Apple Security Update: About the security content of macOS Ventura 13.7.6 Product: macOS Ventura Version: 13.7.6 CVE: CVE-2025-31233 Component: CoreMedia Impact: Processing a maliciously crafted video file may lead to unexpected app termination or corrupt process memory Description: The issue was addressed with improved input sanitization.

CVE-2025-31196 [MEDIUM] CVE-2025-31196: macOS Ventura 13.7.6 Apple Security Update: About the security content of macOS Ventura 13.7.6 Product: macOS Ventura Version: 13.7.6 CVE: CVE-2025-31196 Component: CoreGraphics Impact: Processing a maliciously crafted file may lead to a denial-of-service or potentially disclose memory contents Description: An out-of-bounds read was addressed with improved input validation.

CVE-2025-24232 [CRITICAL] CVE-2025-24232: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-24232 Component: NSDocument Impact: A malicious app may be able to access arbitrary files Description: This issue was addressed through improved state management.

CVE-2025-24211 [CRITICAL] CVE-2025-24211: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-24211 Component: CoreMedia Impact: Processing a maliciously crafted video file may lead to unexpected app termination or corrupt process memory Description: This issue was addressed with improved memory handling.

CVE-2025-30424 [CRITICAL] CVE-2025-30424: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-30424 Component: Photos Storage Impact: Deleting a conversation in Messages may expose user contact information in system logging Description: A logging issue was addressed with improved data redaction.

CVE-2025-31194 [CRITICAL] CVE-2025-31194: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-31194 Component: Shortcuts Impact: A Shortcut may run with admin privileges without authentication Description: An authentication issue was addressed with improved state management.

CVE-2025-24273 [CRITICAL] CVE-2025-24273: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-24273 Component: GPU Drivers Impact: An app may be able to cause unexpected system termination or corrupt kernel memory Description: An out-of-bounds write issue was addressed with improved bounds checking.

CVE-2025-24260 [CRITICAL] CVE-2025-24260: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-24260 Component: SMB Impact: An app may be able to execute arbitrary code with kernel privileges Description: A buffer overflow issue was addressed with improved memory handling.

CVE-2025-24259 [CRITICAL] CVE-2025-24259: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-24259 Component: Parental Controls Impact: An app may be able to retrieve Safari bookmarks without an entitlement check Description: This issue was addressed with additional entitlement checks.