Apple Macos Ventura vulnerabilities

CVE-2025-31198 [MEDIUM] CVE-2025-31198: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-31198 Component: Xsan Impact: An app may be able to cause unexpected system termination or corrupt kernel memory Description: A buffer overflow issue was addressed with improved memory handling.

CVE-2025-30432 [MEDIUM] CVE-2025-30432: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-30432 Component: Kernel Impact: A malicious app may be able to attempt passcode entries on a locked device and thereby cause escalating time delays after 4 failures Description: A logic issue was addressed with improved state management.

CVE-2025-24210 [MEDIUM] CVE-2025-24210: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-24210 Component: ImageIO Impact: Parsing an image may lead to disclosure of user information Description: A logic error was addressed with improved error handling.

CVE-2025-24157 [MEDIUM] CVE-2025-24157: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-24157 Component: Xsan Impact: An app may be able to cause unexpected system termination or corrupt kernel memory Description: A buffer overflow issue was addressed with improved memory handling.

CVE-2025-24139 [MEDIUM] CVE-2025-24139: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-24139 Component: Shortcuts Impact: A shortcut may be able to access files that are normally inaccessible to the Shortcuts app Description: This issue was addressed with improved access restrictions.

CVE-2025-30445 [MEDIUM] CVE-2025-30445: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-30445 Component: AirPlay Impact: An attacker on the local network may cause an unexpected app termination Description: A type confusion issue was addressed with improved checks.

CVE-2025-31187 [MEDIUM] CVE-2025-31187: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-31187 Component: Dock Impact: An app may be able to modify protected parts of the file system Description: This issue was addressed by removing the vulnerable code.

CVE-2025-24179 [MEDIUM] CVE-2025-24179: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-24179 Component: AirPlay Impact: An attacker on the local network may be able to cause a denial-of-service Description: A null pointer dereference was addressed with improved input validation.

CVE-2025-30446 [MEDIUM] CVE-2025-30446: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-30446 Component: PackageKit Impact: A malicious app with root privileges may be able to modify the contents of system files Description: A permissions issue was addressed with additional restrictions.

CVE-2025-24261 [MEDIUM] CVE-2025-24261: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-24261 Component: PackageKit Impact: An app may be able to modify protected parts of the file system Description: The issue was addressed with improved checks.

CVE-2025-43205 [MEDIUM] CVE-2025-43205: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-43205 Component: Audio Impact: An app may be able to bypass ASLR Description: An out-of-bounds access issue was addressed with improved bounds checking.

CVE-2025-31191 [MEDIUM] CVE-2025-31191: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-31191 Component: CoreServices Impact: An app may be able to access sensitive user data Description: This issue was addressed through improved state management.

CVE-2025-24131 [MEDIUM] CVE-2025-24131: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-24131 Component: AirPlay Impact: An attacker on the local network may be able to cause a denial-of-service Description: The issue was addressed with improved memory handling.

CVE-2025-24198 [MEDIUM] CVE-2025-24198: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-24198 Component: Siri Impact: An attacker with physical access may be able to use Siri to access sensitive user data Description: This issue was addressed by restricting options offered on a locked device.

CVE-2025-24251 [MEDIUM] CVE-2025-24251: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-24251 Component: AirPlay Impact: An attacker on the local network may cause an unexpected app termination Description: The issue was addressed with improved checks.

CVE-2025-24148 [MEDIUM] CVE-2025-24148: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-24148 Component: LaunchServices Impact: A malicious JAR file may bypass Gatekeeper checks Description: This issue was addressed with improved handling of executable types.

CVE-2025-30447 [MEDIUM] CVE-2025-30447: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-30447 Component: Foundation Impact: An app may be able to access sensitive user data Description: The issue was resolved by sanitizing logging

CVE-2025-24278 [MEDIUM] CVE-2025-24278: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-24278 Component: System Settings Impact: An app may be able to access protected user data Description: This issue was addressed with improved validation of symlinks.

CVE-2025-30450 [MEDIUM] CVE-2025-30450: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-30450 Component: Mail Impact: "Block All Remote Content" may not apply for all mail previews Description: A permissions issue was addressed with additional sandbox restrictions.

CVE-2025-30438 [MEDIUM] CVE-2025-30438: macOS Ventura 13.7.5 Apple Security Update: About the security content of macOS Ventura 13.7.5 Product: macOS Ventura Version: 13.7.5 CVE: CVE-2025-30438 Component: Share Sheet Impact: A malicious app may be able to dismiss the system notification on the Lock Screen that a recording was started Description: This issue was addressed with improved access restrictions.