CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2025-24164 – Apple Security Advisory 03-31-2025-9
https://notcve.org/view.php?id=CVE-2025-24164
31 Mar 2025 — An app may be able to modify protected parts of the file system. macOS Sequoia 15.4 addresses buffer overflow, bypass, code execution, format string, heap corruption, integer overflow, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122373 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2025-30465 – Apple Security Advisory 03-31-2025-9
https://notcve.org/view.php?id=CVE-2025-30465
31 Mar 2025 — A shortcut may be able to access files that are normally inaccessible to the Shortcuts app. macOS Sequoia 15.4 addresses buffer overflow, bypass, code execution, format string, heap corruption, integer overflow, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122372 • CWE-276: Incorrect Default Permissions •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-30424 – Apple Security Advisory 03-31-2025-9
https://notcve.org/view.php?id=CVE-2025-30424
31 Mar 2025 — Deleting a conversation in Messages may expose user contact information in system logging. macOS Sequoia 15.4 addresses buffer overflow, bypass, code execution, format string, heap corruption, integer overflow, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122373 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-24172 – Apple Security Advisory 03-31-2025-9
https://notcve.org/view.php?id=CVE-2025-24172
31 Mar 2025 — "Block All Remote Content" may not apply for all mail previews. macOS Sequoia 15.4 addresses buffer overflow, bypass, code execution, format string, heap corruption, integer overflow, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122373 • CWE-276: Incorrect Default Permissions •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-31188 – Apple Security Advisory 03-31-2025-9
https://notcve.org/view.php?id=CVE-2025-31188
31 Mar 2025 — An app may be able to bypass Privacy preferences. macOS Sequoia 15.4 addresses buffer overflow, bypass, code execution, format string, heap corruption, integer overflow, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122373 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2025-24277 – Apple Security Advisory 03-31-2025-9
https://notcve.org/view.php?id=CVE-2025-24277
31 Mar 2025 — An app may be able to gain root privileges. macOS Sequoia 15.4 addresses buffer overflow, bypass, code execution, format string, heap corruption, integer overflow, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122373 • CWE-276: Incorrect Default Permissions •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-24261 – Apple Security Advisory 03-31-2025-9
https://notcve.org/view.php?id=CVE-2025-24261
31 Mar 2025 — An app may be able to modify protected parts of the file system. macOS Sequoia 15.4 addresses buffer overflow, bypass, code execution, format string, heap corruption, integer overflow, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122373 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-24148 – Apple Security Advisory 03-31-2025-9
https://notcve.org/view.php?id=CVE-2025-24148
31 Mar 2025 — A malicious JAR file may bypass Gatekeeper checks. macOS Sequoia 15.4 addresses buffer overflow, bypass, code execution, format string, heap corruption, integer overflow, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122373 • CWE-354: Improper Validation of Integrity Check Value •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-24236 – Apple Security Advisory 03-31-2025-8
https://notcve.org/view.php?id=CVE-2025-24236
31 Mar 2025 — An app may be able to access sensitive user data. macOS Sequoia 15.4 addresses buffer overflow, bypass, code execution, format string, heap corruption, integer overflow, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122373 • CWE-284: Improper Access Control •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2025-30449 – Apple Security Advisory 03-31-2025-9
https://notcve.org/view.php?id=CVE-2025-30449
31 Mar 2025 — An app may be able to gain root privileges. macOS Sequoia 15.4 addresses buffer overflow, bypass, code execution, format string, heap corruption, integer overflow, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122373 • CWE-281: Improper Preservation of Permissions •