Apple Macos Ventura vulnerabilities

CVE-2025-24246 [CRITICAL] CVE-2025-24246: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-24246 Component: OpenSSH Impact: An app may be able to access user-sensitive data Description: An injection issue was addressed with improved validation.

CVE-2025-24231 [CRITICAL] CVE-2025-24231: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-24231 Component: AppleMobileFileIntegrity Impact: An app may be able to modify protected parts of the file system Description: The issue was addressed with improved checks.

CVE-2025-24181 [CRITICAL] CVE-2025-24181: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-24181 Component: Sandbox Impact: An app may be able to access protected user data Description: A permissions issue was addressed with additional restrictions.

CVE-2025-24250 [CRITICAL] CVE-2025-24250: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-24250 Component: Security Impact: A malicious app acting as a HTTPS proxy could get access to sensitive user data Description: This issue was addressed with improved access restrictions.

CVE-2025-24241 [CRITICAL] CVE-2025-24241: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-24241 Component: WindowServer Impact: An app may be able to trick a user into copying sensitive data to the pasteboard Description: A configuration issue was addressed with additional restrictions.

CVE-2025-30444 [CRITICAL] CVE-2025-30444: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-30444 Component: SMB Impact: Mounting a maliciously crafted SMB network share may lead to system termination Description: A race condition was addressed with improved locking.

CVE-2025-30433 [CRITICAL] CVE-2025-30433: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-30433 Component: Shortcuts Impact: A shortcut may be able to access files that are normally inaccessible to the Shortcuts app Description: This issue was addressed with improved access restrictions.

CVE-2025-30465 [CRITICAL] CVE-2025-30465: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-30465 Component: Shortcuts Impact: A shortcut may be able to access files that are normally inaccessible to the Shortcuts app Description: A permissions issue was addressed with improved validation.

CVE-2025-24190 [CRITICAL] CVE-2025-24190: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-24190 Component: CoreMedia Impact: Processing a maliciously crafted video file may lead to unexpected app termination or corrupt process memory Description: The issue was addressed with improved memory handling.

CVE-2025-24253 [CRITICAL] CVE-2025-24253: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-24253 Component: StorageKit Impact: An app may be able to access protected user data Description: This issue was addressed with improved handling of symlinks.

CVE-2025-24256 [CRITICAL] CVE-2025-24256: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-24256 Component: GPU Drivers Impact: An app may be able to disclose kernel memory Description: The issue was addressed with improved bounds checks.

CVE-2025-24172 [CRITICAL] CVE-2025-24172: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-24172 Component: Mail Impact: "Block All Remote Content" may not apply for all mail previews Description: A permissions issue was addressed with additional sandbox restrictions.

CVE-2025-24237 [CRITICAL] CVE-2025-24237: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-24237 Component: BiometricKit Impact: An app may be able to cause unexpected system termination Description: A buffer overflow was addressed with improved bounds checking.

CVE-2025-24266 [CRITICAL] CVE-2025-24266: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-24266 Component: Xsan Impact: An app may be able to cause unexpected system termination Description: A buffer overflow was addressed with improved bounds checking.

CVE-2025-30462 [CRITICAL] CVE-2025-30462: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-30462 Component: Dock Impact: An app may be able to modify protected parts of the file system Description: This issue was addressed by removing the vulnerable code.

CVE-2025-24249 [CRITICAL] CVE-2025-24249: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-24249 Component: Installer Impact: An app may be able to check the existence of an arbitrary path on the file system Description: A permissions issue was addressed with additional sandbox restrictions.

CVE-2025-24230 [CRITICAL] CVE-2025-24230: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-24230 Component: CoreAudio Impact: Playing a malicious audio file may lead to an unexpected app termination Description: An out-of-bounds read issue was addressed with improved input validation.

CVE-2025-30457 [CRITICAL] CVE-2025-30457: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-30457 Component: SystemMigration Impact: A malicious app may be able to create symlinks to protected regions of the disk Description: This issue was addressed with improved validation of symlinks.

CVE-2025-30452 [CRITICAL] CVE-2025-30452: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-30452 Component: Sandbox Impact: An input validation issue was addressed Description: The issue was addressed with improved checks.

CVE-2025-24247 [CRITICAL] CVE-2025-24247: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-24247 Component: WindowServer Impact: An attacker may be able to cause unexpected app termination Description: A type confusion issue was addressed with improved checks.