CVSS: 8.0EPSS: 0%CPEs: 2EXPL: 0CVE-2025-31213 – Apple Security Advisory 05-12-2025-5
https://notcve.org/view.php?id=CVE-2025-31213
12 May 2025 — An app may be able to access associated usernames and websites in a user's iCloud Keychain. macOS Ventura 13.7.6 addresses bypass, code execution, double free, information leakage, integer overflow, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122405 • CWE-532: Insertion of Sensitive Information into Log File •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-24142 – Apple Security Advisory 05-12-2025-5
https://notcve.org/view.php?id=CVE-2025-24142
12 May 2025 — An app may be able to access sensitive user data. macOS Ventura 13.7.6 addresses bypass, code execution, double free, information leakage, integer overflow, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122716 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-31259 – Apple Security Advisory 05-12-2025-3
https://notcve.org/view.php?id=CVE-2025-31259
12 May 2025 — An app may be able to gain elevated privileges. macOS Sequoia 15.5 addresses bypass, code execution, double free, information leakage, integer overflow, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122716 • CWE-20: Improper Input Validation •
CVSS: 9.4EPSS: 0%CPEs: 4EXPL: 0CVE-2025-30448 – Apple Security Advisory 05-12-2025-8
https://notcve.org/view.php?id=CVE-2025-30448
12 May 2025 — An attacker may be able to turn on sharing of an iCloud folder without authentication. macOS Ventura 13.7.6 addresses bypass, code execution, double free, information leakage, integer overflow, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122373 • CWE-862: Missing Authorization •
CVSS: 6.2EPSS: 0%CPEs: 1EXPL: 0CVE-2025-31218 – Apple Security Advisory 05-12-2025-3
https://notcve.org/view.php?id=CVE-2025-31218
12 May 2025 — An app may be able to observe the hostnames of new network connections. macOS Sequoia 15.5 addresses bypass, code execution, double free, information leakage, integer overflow, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122716 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.1EPSS: 0%CPEs: 4EXPL: 0CVE-2025-31234 – Apple Security Advisory 05-12-2025-8
https://notcve.org/view.php?id=CVE-2025-31234
12 May 2025 — An attacker may be able to cause unexpected system termination or corrupt kernel memory. macOS Sequoia 15.5 addresses bypass, code execution, double free, information leakage, integer overflow, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122404 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2025-31222 – Apple Security Advisory 05-12-2025-8
https://notcve.org/view.php?id=CVE-2025-31222
12 May 2025 — A user may be able to elevate privileges. macOS Ventura 13.7.6 addresses bypass, code execution, double free, information leakage, integer overflow, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122404 • CWE-269: Improper Privilege Management •
CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 0CVE-2025-31214 – Apple Security Advisory 05-12-2025-1
https://notcve.org/view.php?id=CVE-2025-31214
12 May 2025 — An attacker in a privileged network position may be able to intercept network traffic. iOS 18.5 and iPadOS 18.5 addresses code execution, double free, integer overflow, out of bounds read, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122404 • CWE-300: Channel Accessible by Non-Endpoint •
CVSS: 8.8EPSS: 0%CPEs: 6EXPL: 0CVE-2025-31238 – Apple Safari Scrollbar Animation Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-31238
12 May 2025 — An attacker can leverage this vulnerability to execute code in the context of the browser process. macOS Sequoia 15.5 addresses bypass, code execution, double free, information leakage, integer overflow, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122404 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2025-31239 – Apple macOS CoreMedia Framework Memory Corruption Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-31239
12 May 2025 — An attacker can leverage this vulnerability to execute code in the context of the current process. macOS Ventura 13.7.6 addresses bypass, code execution, double free, information leakage, integer overflow, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122404 • CWE-416: Use After Free •