CVSS: 6.5EPSS: 0%CPEs: 6EXPL: 0CVE-2024-54497 – Apple macOS WindowServer Unchecked Input for Loop Condition Denial-of-Service Vulnerability
https://notcve.org/view.php?id=CVE-2024-54497
27 Jan 2025 — An attacker can leverage this vulnerability to create a denial-of-service condition on the system. macOS Sonoma 14.7.3 addresses bypass, code execution, integer overflow, out of bounds read, and out of bounds write vulnerabilities. • https://support.apple.com/en-us/121837 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2025-24102 – Apple Security Advisory 01-27-2025-6
https://notcve.org/view.php?id=CVE-2025-24102
27 Jan 2025 — An app may be able to determine a user’s current location. macOS Sequoia 15.3 addresses buffer overflow, bypass, code execution, information leakage, integer overflow, null pointer, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122067 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-24092 – Apple Security Advisory 01-27-2025-5
https://notcve.org/view.php?id=CVE-2025-24092
27 Jan 2025 — An app may be able to read sensitive location information. macOS Sequoia 15.3 addresses buffer overflow, bypass, code execution, information leakage, integer overflow, null pointer, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122068 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-24138 – Apple Security Advisory 01-27-2025-6
https://notcve.org/view.php?id=CVE-2025-24138
27 Jan 2025 — A malicious application may be able to leak sensitive user information. macOS Sequoia 15.3 addresses buffer overflow, bypass, code execution, information leakage, integer overflow, null pointer, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122068 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.8EPSS: 6%CPEs: 2EXPL: 2CVE-2025-24118 – Apple Security Advisory 01-27-2025-5
https://notcve.org/view.php?id=CVE-2025-24118
27 Jan 2025 — An app may be able to cause unexpected system termination or write kernel memory. macOS Sequoia 15.3 addresses buffer overflow, bypass, code execution, information leakage, integer overflow, null pointer, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://github.com/jprx/CVE-2025-24118 • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 0%CPEs: 6EXPL: 0CVE-2025-24159 – Apple Security Advisory 01-27-2025-8
https://notcve.org/view.php?id=CVE-2025-24159
27 Jan 2025 — An app may be able to execute arbitrary code with kernel privileges. macOS Sequoia 15.3 addresses buffer overflow, bypass, code execution, information leakage, integer overflow, null pointer, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122066 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-24122 – Apple Security Advisory 01-27-2025-6
https://notcve.org/view.php?id=CVE-2025-24122
27 Jan 2025 — An app may be able to modify protected parts of the file system. macOS Sequoia 15.3 addresses buffer overflow, bypass, code execution, information leakage, integer overflow, null pointer, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122068 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-24134 – Apple Security Advisory 01-27-2025-4
https://notcve.org/view.php?id=CVE-2025-24134
27 Jan 2025 — An app may be able to access user-sensitive data. macOS Sequoia 15.3 addresses buffer overflow, bypass, code execution, information leakage, integer overflow, null pointer, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122068 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.5EPSS: 0%CPEs: 6EXPL: 0CVE-2025-24163 – Apple Security Advisory 01-27-2025-8
https://notcve.org/view.php?id=CVE-2025-24163
27 Jan 2025 — Parsing a file may lead to an unexpected app termination. macOS Sequoia 15.3 addresses buffer overflow, bypass, code execution, information leakage, integer overflow, null pointer, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122066 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-24135 – Apple Security Advisory 01-27-2025-4
https://notcve.org/view.php?id=CVE-2025-24135
27 Jan 2025 — An app may be able to gain elevated privileges. macOS Sequoia 15.3 addresses buffer overflow, bypass, code execution, information leakage, integer overflow, null pointer, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122068 • CWE-276: Incorrect Default Permissions •