Apple

macOS

2324 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2025-24277

  • EPSS 0.01%
  • Veröffentlicht 31.03.2025 23:15:24
  • Zuletzt bearbeitet 02.04.2025 14:16:05

A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to gain root privileges.

5.5

CVE-2025-24278

  • EPSS 0.03%
  • Veröffentlicht 31.03.2025 23:15:24
  • Zuletzt bearbeitet 01.04.2025 20:26:22

This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to access protected user data.

4.3

CVE-2025-24279

  • EPSS 0.04%
  • Veröffentlicht 31.03.2025 23:15:24
  • Zuletzt bearbeitet 08.04.2025 14:06:35

This issue was addressed with improved file handling. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to access contacts.

5.5

CVE-2025-24280

  • EPSS 0.01%
  • Veröffentlicht 31.03.2025 23:15:24
  • Zuletzt bearbeitet 01.04.2025 20:26:22

An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to access user-sensitive data.

5.5

CVE-2025-24281

  • EPSS 0.01%
  • Veröffentlicht 31.03.2025 23:15:24
  • Zuletzt bearbeitet 04.04.2025 18:22:19

This issue was addressed with improved data protection. This issue is fixed in macOS Sequoia 15.4. An app may be able to access sensitive user data.

5.5

CVE-2025-24282

  • EPSS 0.01%
  • Veröffentlicht 31.03.2025 23:15:24
  • Zuletzt bearbeitet 04.04.2025 18:23:23

A library injection issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.4. An app may be able to modify protected parts of the file system.

5.5

CVE-2025-24283

  • EPSS 0.01%
  • Veröffentlicht 31.03.2025 23:15:24
  • Zuletzt bearbeitet 07.04.2025 14:07:33

A logging issue was addressed with improved data redaction. This issue is fixed in visionOS 2.4, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. An app may be able to access sensitive user data.

9.8

CVE-2025-30424

  • EPSS 0.06%
  • Veröffentlicht 31.03.2025 23:15:24
  • Zuletzt bearbeitet 07.04.2025 14:07:27

A logging issue was addressed with improved data redaction. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. Deleting a conversation in Messages may expose user contact information in system logging.

4.3

CVE-2025-30425

  • EPSS 0.04%
  • Veröffentlicht 31.03.2025 23:15:24
  • Zuletzt bearbeitet 07.04.2025 14:02:29

This issue was addressed through improved state management. This issue is fixed in tvOS 18.4, Safari 18.4, iPadOS 17.7.6, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. A malicious website may be able to track users in Safari private browsing mode.

9.8

CVE-2025-30426

  • EPSS 0.08%
  • Veröffentlicht 31.03.2025 23:15:24
  • Zuletzt bearbeitet 07.04.2025 14:02:24

This issue was addressed with additional entitlement checks. This issue is fixed in visionOS 2.4, tvOS 18.4, iPadOS 17.7.6, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. An app may be able to enumerate a user's installed apps.