Apple

macOS

2433 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2025-31279

  • EPSS 0.07%
  • Veröffentlicht 29.07.2025 23:29:02
  • Zuletzt bearbeitet 03.11.2025 20:18:25

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.6, iPadOS 17.7.9, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may be able to fingerprint the user.

7.1

CVE-2025-43239

  • EPSS 0.02%
  • Veröffentlicht 29.07.2025 23:29:00
  • Zuletzt bearbeitet 03.11.2025 20:18:55

An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. Processing a maliciously crafted file may lead to unexpected app termination.

9.1

CVE-2025-31281

  • EPSS 0.19%
  • Veröffentlicht 29.07.2025 23:28:59
  • Zuletzt bearbeitet 03.11.2025 20:18:25

An input validation issue was addressed with improved memory handling. This issue is fixed in visionOS 2.6, tvOS 18.6, macOS Sequoia 15.6, iOS 18.6 and iPadOS 18.6. Processing a maliciously crafted file may lead to unexpected app termination.

9.8

CVE-2025-43192

  • EPSS 0.09%
  • Veröffentlicht 29.07.2025 23:28:58
  • Zuletzt bearbeitet 03.11.2025 20:18:50

A configuration issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7. Account-driven User Enrollment may still be possible with Lockdown Mode turned on.

7.1

CVE-2025-43254

  • EPSS 0.02%
  • Veröffentlicht 29.07.2025 23:28:57
  • Zuletzt bearbeitet 03.11.2025 20:18:57

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Sequoia 15.6, macOS Ventura 13.7.7, macOS Sonoma 14.7.7. Processing a maliciously crafted file may lead to unexpected app termination.

9.8

CVE-2025-43184

  • EPSS 0.09%
  • Veröffentlicht 29.07.2025 23:28:56
  • Zuletzt bearbeitet 03.11.2025 20:18:49

This issue was addressed by adding an additional prompt for user consent. This issue is fixed in macOS Sonoma 14.7.7, macOS Ventura 13.7.7, macOS Sequoia 15.4. A shortcut may be able to bypass sensitive Shortcuts app settings.

5.5

CVE-2025-43235

  • EPSS 0.03%
  • Veröffentlicht 29.07.2025 23:28:55
  • Zuletzt bearbeitet 03.11.2025 20:18:55

The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.6. An app may be able to cause a denial-of-service.

4.4

CVE-2025-43274

  • EPSS 0.01%
  • Veröffentlicht 29.07.2025 23:28:54
  • Zuletzt bearbeitet 03.11.2025 20:18:59

A privacy issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.6. A sandboxed process may be able to circumvent sandbox restrictions.

7.5

CVE-2025-43223

  • EPSS 0.23%
  • Veröffentlicht 29.07.2025 23:28:53
  • Zuletzt bearbeitet 03.11.2025 20:18:53

A denial-of-service issue was addressed with improved input validation. This issue is fixed in macOS Ventura 13.7.7, iPadOS 17.7.9, iOS 18.6 and iPadOS 18.6, macOS Sonoma 14.7.7, watchOS 11.6, macOS Sequoia 15.6, tvOS 18.6, visionOS 2.6. A non-privil...

8.8

CVE-2025-6558

Warnung Medienbericht
  • EPSS 0.09%
  • Veröffentlicht 15.07.2025 18:15:24
  • Zuletzt bearbeitet 06.11.2025 14:52:01

Insufficient validation of untrusted input in ANGLE and GPU in Google Chrome prior to 138.0.7204.157 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)