CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2025-43277 – Apple Security Advisory 07-29-2025-8
https://notcve.org/view.php?id=CVE-2025-43277
29 Jul 2025 — The issue was addressed with improved memory handling. This issue is fixed in iOS 18.6 and iPadOS 18.6, watchOS 11.6, macOS Sequoia 15.6, tvOS 18.6, visionOS 2.6. Processing a maliciously crafted audio file may lead to memory corruption. El problema se solucionó mejorando la gestión de la memoria. Este problema está corregido en iOS 18.6 y iPadOS 18.6, watchOS 11.6, macOS Sequoia 15.6, tvOS 18.6 y visionOS 2.6. • https://support.apple.com/en-us/124147 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 0%CPEs: 4EXPL: 0CVE-2025-43220 – Apple Security Advisory 07-29-2025-5
https://notcve.org/view.php?id=CVE-2025-43220
29 Jul 2025 — This issue was addressed with improved validation of symlinks. This issue is fixed in iPadOS 17.7.9, macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may be able to access protected user data. Este problema se solucionó mejorando la validación de enlaces simbólicos. Este problema está corregido en iPadOS 17.7.9, macOS Sequoia 15.6, macOS Sonoma 14.7.7 y macOS Ventura 13.7.7. • https://support.apple.com/en-us/124148 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2025-43241 – Apple Security Advisory 07-29-2025-5
https://notcve.org/view.php?id=CVE-2025-43241
29 Jul 2025 — A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Ventura 13.7.7, macOS Sonoma 14.7.7. An app may be able to read files outside of its sandbox. Se solucionó un problema de permisos con restricciones adicionales. Este problema se solucionó en macOS Sequoia 15.6, macOS Ventura 13.7.7 y macOS Sonoma 14.7.7. • https://support.apple.com/en-us/124149 • CWE-284: Improper Access Control •
CVSS: 9.1EPSS: 0%CPEs: 2EXPL: 0CVE-2025-43240 – webkitgtk: A download’s origin may be incorrectly associated
https://notcve.org/view.php?id=CVE-2025-43240
29 Jul 2025 — A logic issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.6, Safari 18. 6. A download's origin may be incorrectly associated. Se solucionó un problema lógico mejorando las comprobaciones. Este problema se solucionó en macOS Sequoia 15.6. • https://support.apple.com/en-us/124149 • CWE-703: Improper Check or Handling of Exceptional Conditions •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2025-43256 – Apple Security Advisory 07-29-2025-4
https://notcve.org/view.php?id=CVE-2025-43256
29 Jul 2025 — This issue was addressed through improved state management. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7. An app may be able to gain root privileges. Este problema se solucionó mejorando la gestión de estado. Está corregido en macOS Sequoia 15.6 y macOS Sonoma 14.7.7. • https://support.apple.com/en-us/124149 • CWE-269: Improper Privilege Management •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-43251 – Apple Security Advisory 07-29-2025-3
https://notcve.org/view.php?id=CVE-2025-43251
29 Jul 2025 — An authorization issue was addressed with improved state management. This issue is fixed in macOS Sequoia 15.6. A local attacker may gain access to Keychain items. Se solucionó un problema de autorización mejorando la gestión de estado. Este problema se solucionó en macOS Sequoia 15.6. • https://support.apple.com/en-us/124149 • CWE-863: Incorrect Authorization •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-43267 – Apple Security Advisory 07-29-2025-3
https://notcve.org/view.php?id=CVE-2025-43267
29 Jul 2025 — An injection issue was addressed with improved validation. This issue is fixed in macOS Sequoia 15.6. An app may be able to access sensitive user data. Se solucionó un problema de inyección mejorando la validación. Este problema se solucionó en macOS Sequoia 15.6. • https://support.apple.com/en-us/124149 • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2025-43246 – Apple Security Advisory 07-29-2025-4
https://notcve.org/view.php?id=CVE-2025-43246
29 Jul 2025 — This issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7. An app may be able to access sensitive user data. Este problema se solucionó mejorando las comprobaciones. Este problema está corregido en macOS Sequoia 15.6 y macOS Sonoma 14.7.7. • https://support.apple.com/en-us/124149 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 0CVE-2025-43273 – Apple Security Advisory 07-29-2025-3
https://notcve.org/view.php?id=CVE-2025-43273
29 Jul 2025 — A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.6. A sandboxed process may be able to circumvent sandbox restrictions. Se solucionó un problema de permisos con restricciones adicionales en el entorno de pruebas. Este problema se solucionó en macOS Sequoia 15.6. • https://support.apple.com/en-us/124149 • CWE-693: Protection Mechanism Failure •
CVSS: 8.8EPSS: 0%CPEs: 7EXPL: 0CVE-2025-31273 – webkitgtk: Processing maliciously crafted web content may lead to memory corruption
https://notcve.org/view.php?id=CVE-2025-31273
29 Jul 2025 — The issue was addressed with improved memory handling. This issue is fixed in Safari 18.6, macOS Sequoia 15.6, iOS 18.6 and iPadOS 18.6, tvOS 18.6, watchOS 11.6, visionOS 2.6. Processing maliciously crafted web content may lead to memory corruption. El problema se solucionó mejorando la gestión de la memoria. Este problema está corregido en macOS Sequoia 15.6, iOS 18.6 y iPadOS 18.6, tvOS 18.6, watchOS 11.6 y visionOS 2.6. • https://support.apple.com/en-us/124147 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •