CVSS: 9.8EPSS: 0%CPEs: 5EXPL: 0CVE-2025-30429 – Apple Security Advisory 04-01-2025-1
https://notcve.org/view.php?id=CVE-2025-30429
31 Mar 2025 — An app may be able to break out of its sandbox. macOS Sequoia 15.4 addresses buffer overflow, bypass, code execution, format string, heap corruption, integer overflow, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122371 •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2025-24217 – Apple Security Advisory 04-01-2025-1
https://notcve.org/view.php?id=CVE-2025-24217
31 Mar 2025 — An app may be able to access sensitive user data. macOS Sequoia 15.4 addresses buffer overflow, bypass, code execution, format string, heap corruption, integer overflow, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122371 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 4.7EPSS: 0%CPEs: 1EXPL: 0CVE-2025-24240 – Apple Security Advisory 03-31-2025-9
https://notcve.org/view.php?id=CVE-2025-24240
31 Mar 2025 — An app may be able to access user-sensitive data. macOS Sequoia 15.4 addresses buffer overflow, bypass, code execution, format string, heap corruption, integer overflow, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122373 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-24241 – Apple Security Advisory 03-31-2025-9
https://notcve.org/view.php?id=CVE-2025-24241
31 Mar 2025 — An app may be able to trick a user into copying sensitive data to the pasteboard. macOS Sequoia 15.4 addresses buffer overflow, bypass, code execution, format string, heap corruption, integer overflow, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122373 • CWE-284: Improper Access Control •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2025-24191 – Apple Security Advisory 03-31-2025-7
https://notcve.org/view.php?id=CVE-2025-24191
31 Mar 2025 — An app may be able to modify protected parts of the file system. macOS Sequoia 15.4 addresses buffer overflow, bypass, code execution, format string, heap corruption, integer overflow, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122373 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2025-24257 – Apple Security Advisory 04-01-2025-1
https://notcve.org/view.php?id=CVE-2025-24257
31 Mar 2025 — An out-of-bounds write issue was addressed with improved input validation. ... An app may be able to cause unexpected system termination or write kernel memory. macOS Sequoia 15.4 addresses buffer overflow, bypass, code execution, format string, heap corruption, integer overflow, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122371 • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: 4EXPL: 0CVE-2025-31184 – Apple Security Advisory 03-31-2025-11
https://notcve.org/view.php?id=CVE-2025-31184
31 Mar 2025 — An app may gain unauthorized access to Local Network. macOS Sequoia 15.4 addresses buffer overflow, bypass, code execution, format string, heap corruption, integer overflow, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122371 • CWE-281: Improper Preservation of Permissions •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2025-24282 – Apple Security Advisory 03-31-2025-7
https://notcve.org/view.php?id=CVE-2025-24282
31 Mar 2025 — An app may be able to modify protected parts of the file system. macOS Sequoia 15.4 addresses buffer overflow, bypass, code execution, format string, heap corruption, integer overflow, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122373 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2025-31192 – Apple Security Advisory 03-31-2025-7
https://notcve.org/view.php?id=CVE-2025-31192
31 Mar 2025 — A website may be able to access sensor information without user consent. macOS Sequoia 15.4 addresses buffer overflow, bypass, code execution, format string, heap corruption, integer overflow, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122371 • CWE-305: Authentication Bypass by Primary Weakness •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2025-30432 – Apple Security Advisory 04-01-2025-1
https://notcve.org/view.php?id=CVE-2025-30432
31 Mar 2025 — A malicious app may be able to attempt passcode entries on a locked device and thereby cause escalating time delays after 4 failures. macOS Ventura 13.7.5 addresses buffer overflow, bypass, code execution, format string, heap corruption, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122371 • CWE-287: Improper Authentication •