CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-31224 – Apple Security Advisory 05-12-2025-5
https://notcve.org/view.php?id=CVE-2025-31224
12 May 2025 — An app may be able to bypass certain Privacy preferences. macOS Ventura 13.7.6 addresses bypass, code execution, double free, information leakage, integer overflow, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122716 • CWE-693: Protection Mechanism Failure •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-31225 – Apple Security Advisory 05-12-2025-1
https://notcve.org/view.php?id=CVE-2025-31225
12 May 2025 — Call history from deleted apps may still appear in spotlight search results. iOS 18.5 and iPadOS 18.5 addresses code execution, double free, integer overflow, out of bounds read, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122404 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 8.8EPSS: 0%CPEs: 6EXPL: 0CVE-2025-31233 – Apple macOS MP4 File Parsing Memory Corruption Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-31233
12 May 2025 — An attacker can leverage this vulnerability to execute code in the context of the WebKit GPU process. macOS Ventura 13.7.6 addresses bypass, code execution, double free, information leakage, integer overflow, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122404 • CWE-20: Improper Input Validation •
CVSS: 6.5EPSS: 0%CPEs: 6EXPL: 0CVE-2025-31209 – Apple macOS PDF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2025-31209
12 May 2025 — An out-of-bounds read was addressed with improved bounds checking. ... An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. macOS Ventura 13.7.6 addresses bypass, code execution, double free, information leakage, integer overflow, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122404 • CWE-125: Out-of-bounds Read •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-31244 – Apple Security Advisory 05-12-2025-3
https://notcve.org/view.php?id=CVE-2025-31244
12 May 2025 — An app may be able to break out of its sandbox. macOS Sequoia 15.5 addresses bypass, code execution, double free, information leakage, integer overflow, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122716 • CWE-693: Protection Mechanism Failure •
CVSS: 8.0EPSS: 0%CPEs: 2EXPL: 0CVE-2025-31213 – Apple Security Advisory 05-12-2025-5
https://notcve.org/view.php?id=CVE-2025-31213
12 May 2025 — An app may be able to access associated usernames and websites in a user's iCloud Keychain. macOS Ventura 13.7.6 addresses bypass, code execution, double free, information leakage, integer overflow, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122405 • CWE-532: Insertion of Sensitive Information into Log File •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-24142 – Apple Security Advisory 05-12-2025-5
https://notcve.org/view.php?id=CVE-2025-24142
12 May 2025 — An app may be able to access sensitive user data. macOS Ventura 13.7.6 addresses bypass, code execution, double free, information leakage, integer overflow, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122716 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-31259 – Apple Security Advisory 05-12-2025-3
https://notcve.org/view.php?id=CVE-2025-31259
12 May 2025 — An app may be able to gain elevated privileges. macOS Sequoia 15.5 addresses bypass, code execution, double free, information leakage, integer overflow, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122716 • CWE-20: Improper Input Validation •
CVSS: 9.4EPSS: 0%CPEs: 4EXPL: 0CVE-2025-30448 – Apple Security Advisory 05-12-2025-8
https://notcve.org/view.php?id=CVE-2025-30448
12 May 2025 — An attacker may be able to turn on sharing of an iCloud folder without authentication. macOS Ventura 13.7.6 addresses bypass, code execution, double free, information leakage, integer overflow, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122373 • CWE-862: Missing Authorization •
CVSS: 6.2EPSS: 0%CPEs: 1EXPL: 0CVE-2025-31218 – Apple Security Advisory 05-12-2025-3
https://notcve.org/view.php?id=CVE-2025-31218
12 May 2025 — An app may be able to observe the hostnames of new network connections. macOS Sequoia 15.5 addresses bypass, code execution, double free, information leakage, integer overflow, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122716 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •