CVSS: 6.5EPSS: 0%CPEs: 11EXPL: 0CVE-2025-24251
https://notcve.org/view.php?id=CVE-2025-24251
29 Apr 2025 — The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4, tvOS 18.4, macOS Ventura 13.7.5, iPadOS 17.7.6, macOS Sonoma 14.7.5, iOS 18.4 and iPadOS 18.4, watchOS 11.4, visionOS 2.4. An attacker on the local network may cause an unexpected app termination. • https://support.apple.com/en-us/122371 • CWE-476: NULL Pointer Dereference •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2025-31202
https://notcve.org/view.php?id=CVE-2025-31202
29 Apr 2025 — A null pointer dereference was addressed with improved input validation. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, tvOS 18.4, visionOS 2.4. An attacker on the local network may be able to cause a denial-of-service. • https://support.apple.com/en-us/122371 • CWE-476: NULL Pointer Dereference •
CVSS: 6.5EPSS: 0%CPEs: 6EXPL: 0CVE-2025-31203
https://notcve.org/view.php?id=CVE-2025-31203
29 Apr 2025 — An integer overflow was addressed with improved input validation. This issue is fixed in macOS Sequoia 15.4, tvOS 18.4, iPadOS 17.7.6, macOS Sonoma 14.7.5, iOS 18.4 and iPadOS 18.4, watchOS 11.4, visionOS 2.4. An attacker on the local network may be able to cause a denial-of-service. • https://support.apple.com/en-us/122371 • CWE-190: Integer Overflow or Wraparound •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2025-30445
https://notcve.org/view.php?id=CVE-2025-30445
29 Apr 2025 — A type confusion issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4, tvOS 18.4, macOS Ventura 13.7.5, iPadOS 17.7.6, macOS Sonoma 14.7.5, iOS 18.4 and iPadOS 18.4, visionOS 2.4. An attacker on the local network may cause an unexpected app termination. • https://support.apple.com/en-us/122371 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 7.6EPSS: 0%CPEs: 8EXPL: 3CVE-2025-31200 – Apple Multiple Products Memory Corruption Vulnerability
https://notcve.org/view.php?id=CVE-2025-31200
16 Apr 2025 — A memory corruption issue was addressed with improved bounds checking. This issue is fixed in tvOS 18.4.1, visionOS 2.4.1, iOS iOS 18.4.1 and iPadOS 18.4.1, macOS Sequoia 15.4.1. Processing an audio stream in a maliciously crafted media file may result in code execution. Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals on iOS. This is a strategic public disclosure of a zero-click iMessage exploit chain that was disc... • https://packetstorm.news/files/id/193169 •
CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2025-31201 – Apple Multiple Products Arbitrary Read and Write Vulnerability
https://notcve.org/view.php?id=CVE-2025-31201
16 Apr 2025 — This issue was addressed by removing the vulnerable code. This issue is fixed in tvOS 18.4.1, visionOS 2.4.1, iOS iOS 18.4.1 and iPadOS 18.4.1, macOS Sequoia 15.4.1. An attacker with arbitrary read and write capability may be able to bypass Pointer Authentication. Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals on iOS. This is a strategic public disclosure of a zero-click iMessage exploit chain that was discovered ... • https://support.apple.com/en-us/122282 •
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0CVE-2023-42983
https://notcve.org/view.php?id=CVE-2023-42983
11 Apr 2025 — Processing a file may lead to a denial-of-service or potentially disclose memory contents. This issue is fixed in macOS 14. The issue was addressed with improved checks. • https://support.apple.com/en-us/120950 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2023-42977
https://notcve.org/view.php?id=CVE-2023-42977
11 Apr 2025 — A path handling issue was addressed with improved validation. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to break out of its sandbox. • https://support.apple.com/en-us/120949 • CWE-20: Improper Input Validation •
CVSS: 6.3EPSS: 0%CPEs: 2EXPL: 1CVE-2023-42961
https://notcve.org/view.php?id=CVE-2023-42961
11 Apr 2025 — A path handling issue was addressed with improved validation. This issue is fixed in iOS 17 and iPadOS 17, iOS 16.7 and iPadOS 16.7, macOS Sonoma 14, macOS Ventura 13.6, macOS Monterey 12.7. A sandboxed process may be able to circumvent sandbox restrictions. • https://github.com/windz3r0day/CVE-2023-42961 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0CVE-2023-42982
https://notcve.org/view.php?id=CVE-2023-42982
11 Apr 2025 — Processing a file may lead to a denial-of-service or potentially disclose memory contents. This issue is fixed in macOS 14. The issue was addressed with improved checks. • https://support.apple.com/en-us/120950 • CWE-125: Out-of-bounds Read •