CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-24108 – Apple Security Advisory 01-27-2025-4
https://notcve.org/view.php?id=CVE-2025-24108
27 Jan 2025 — An app may be able to access protected user data. macOS Sequoia 15.3 addresses buffer overflow, bypass, code execution, information leakage, integer overflow, null pointer, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122068 • CWE-862: Missing Authorization •
CVSS: 8.8EPSS: 0%CPEs: 6EXPL: 0CVE-2025-24124 – Apple macOS MOV File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-24124
27 Jan 2025 — An attacker can leverage this vulnerability to execute code in the context of the current process. macOS Sequoia 15.3 addresses buffer overflow, bypass, code execution, information leakage, integer overflow, null pointer, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122066 •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2025-24112 – Apple Security Advisory 01-27-2025-5
https://notcve.org/view.php?id=CVE-2025-24112
27 Jan 2025 — Parsing a file may lead to an unexpected app termination. macOS Sequoia 15.3 addresses buffer overflow, bypass, code execution, information leakage, integer overflow, null pointer, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122068 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 3.3EPSS: 0%CPEs: 5EXPL: 0CVE-2025-24145 – Apple Security Advisory 01-27-2025-4
https://notcve.org/view.php?id=CVE-2025-24145
27 Jan 2025 — An app may be able to view a contact's phone number in system logs. macOS Sequoia 15.3 addresses buffer overflow, bypass, code execution, information leakage, integer overflow, null pointer, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122066 • CWE-532: Insertion of Sensitive Information into Log File •
CVSS: 6.7EPSS: 0%CPEs: 2EXPL: 0CVE-2025-24153 – Apple Security Advisory 01-27-2025-4
https://notcve.org/view.php?id=CVE-2025-24153
27 Jan 2025 — A buffer overflow issue was addressed with improved memory handling. ... An app with root privileges may be able to execute arbitrary code with kernel privileges. macOS Sequoia 15.3 addresses buffer overflow, bypass, code execution, information leakage, integer overflow, null pointer, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122068 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 4.3EPSS: 0%CPEs: 3EXPL: 0CVE-2025-24128 – Apple Security Advisory 01-27-2025-9
https://notcve.org/view.php?id=CVE-2025-24128
27 Jan 2025 — Visiting a malicious website may lead to address bar spoofing. macOS Sequoia 15.3 addresses buffer overflow, bypass, code execution, information leakage, integer overflow, null pointer, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122066 •
CVSS: 4.7EPSS: 0%CPEs: 2EXPL: 0CVE-2025-24094 – Apple Security Advisory 01-27-2025-6
https://notcve.org/view.php?id=CVE-2025-24094
27 Jan 2025 — An app may be able to access user-sensitive data. macOS Sequoia 15.3 addresses buffer overflow, bypass, code execution, information leakage, integer overflow, null pointer, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122068 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2025-24169 – Apple Security Advisory 01-27-2025-9
https://notcve.org/view.php?id=CVE-2025-24169
27 Jan 2025 — A malicious app may be able to bypass browser extension authentication. macOS Sequoia 15.3 addresses buffer overflow, bypass, code execution, information leakage, integer overflow, null pointer, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122068 • CWE-532: Insertion of Sensitive Information into Log File •
CVSS: 9.8EPSS: 0%CPEs: 5EXPL: 0CVE-2025-24129 – Apple Security Advisory 01-27-2025-8
https://notcve.org/view.php?id=CVE-2025-24129
27 Jan 2025 — A remote attacker may cause an unexpected app termination. macOS Sequoia 15.3 addresses buffer overflow, bypass, code execution, information leakage, integer overflow, null pointer, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122066 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2025-24152 – Apple Security Advisory 01-27-2025-4
https://notcve.org/view.php?id=CVE-2025-24152
27 Jan 2025 — An app may be able to cause unexpected system termination or corrupt kernel memory. macOS Sequoia 15.3 addresses buffer overflow, bypass, code execution, information leakage, integer overflow, null pointer, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/122068 •