CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-24122 – Apple Security Advisory 01-27-2025-6
https://notcve.org/view.php?id=CVE-2025-24122
27 Jan 2025 — An app may be able to modify protected parts of the file system. macOS Sequoia 15.3 addresses buffer overflow, bypass, code execution, information leakage, integer overflow, null pointer, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122068 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-24134 – Apple Security Advisory 01-27-2025-4
https://notcve.org/view.php?id=CVE-2025-24134
27 Jan 2025 — An app may be able to access user-sensitive data. macOS Sequoia 15.3 addresses buffer overflow, bypass, code execution, information leakage, integer overflow, null pointer, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122068 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.5EPSS: 0%CPEs: 6EXPL: 0CVE-2025-24163 – Apple Security Advisory 01-27-2025-8
https://notcve.org/view.php?id=CVE-2025-24163
27 Jan 2025 — Parsing a file may lead to an unexpected app termination. macOS Sequoia 15.3 addresses buffer overflow, bypass, code execution, information leakage, integer overflow, null pointer, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122066 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-24135 – Apple Security Advisory 01-27-2025-4
https://notcve.org/view.php?id=CVE-2025-24135
27 Jan 2025 — An app may be able to gain elevated privileges. macOS Sequoia 15.3 addresses buffer overflow, bypass, code execution, information leakage, integer overflow, null pointer, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122068 • CWE-276: Incorrect Default Permissions •
CVSS: 8.8EPSS: 0%CPEs: 6EXPL: 0CVE-2025-24123 – Apple macOS MOV File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-24123
27 Jan 2025 — An attacker can leverage this vulnerability to execute code in the context of the current process. macOS Sequoia 15.3 addresses buffer overflow, bypass, code execution, information leakage, integer overflow, null pointer, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122066 •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-24174 – Apple Security Advisory 01-27-2025-6
https://notcve.org/view.php?id=CVE-2025-24174
27 Jan 2025 — An app may be able to bypass Privacy preferences. macOS Sequoia 15.3 addresses buffer overflow, bypass, code execution, information leakage, integer overflow, null pointer, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122068 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-24093 – Apple Security Advisory 01-27-2025-6
https://notcve.org/view.php?id=CVE-2025-24093
27 Jan 2025 — An app may be able to access removable volumes without user consent. macOS Sequoia 15.4 addresses buffer overflow, bypass, code execution, format string, heap corruption, integer overflow, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122069 • CWE-276: Incorrect Default Permissions •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-24139 – Apple macOS ICC Profile Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2025-24139
27 Jan 2025 — An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. macOS Sequoia 15.3 addresses buffer overflow, bypass, code execution, information leakage, integer overflow, null pointer, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122068 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 9%CPEs: 10EXPL: 7CVE-2025-24085 – Apple Multiple Products Use-After-Free Vulnerability
https://notcve.org/view.php?id=CVE-2025-24085
27 Jan 2025 — Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 17.2. macOS Sequoia 15.3 addresses buffer overflow, bypass, code execution, information leakage, integer overflow, null pointer, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://packetstorm.news/files/id/200679 • CWE-416: Use After Free •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-24103 – Apple Security Advisory 01-27-2025-6
https://notcve.org/view.php?id=CVE-2025-24103
27 Jan 2025 — An app may be able to access protected user data. macOS Sequoia 15.3 addresses buffer overflow, bypass, code execution, information leakage, integer overflow, null pointer, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122068 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •