CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2025-43241 – Apple Security Advisory 07-29-2025-5
https://notcve.org/view.php?id=CVE-2025-43241
29 Jul 2025 — Una aplicación podría leer archivos fuera de su entorno de pruebas. macOS Sequoia 15.6 addresses bypass, cross site scripting, integer overflow, out of bounds access, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/124149 • CWE-284: Improper Access Control •
CVSS: 9.1EPSS: 0%CPEs: 2EXPL: 0CVE-2025-43240 – webkitgtk: A download’s origin may be incorrectly associated
https://notcve.org/view.php?id=CVE-2025-43240
29 Jul 2025 — A malicious website can cause the origin of a download to be incorrectly associated with the wrong site due to improper checks, allowing an attacker to trick a user into downloading a malicious file. macOS Sequoia 15.6 addresses bypass, cross site scripting, integer overflow, out of bounds access, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/124149 • CWE-703: Improper Check or Handling of Exceptional Conditions •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2025-43256 – Apple Security Advisory 07-29-2025-4
https://notcve.org/view.php?id=CVE-2025-43256
29 Jul 2025 — Es posible que una aplicación obtenga privilegios de root. macOS Sequoia 15.6 addresses bypass, cross site scripting, integer overflow, out of bounds access, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/124149 • CWE-269: Improper Privilege Management •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-43251 – Apple Security Advisory 07-29-2025-3
https://notcve.org/view.php?id=CVE-2025-43251
29 Jul 2025 — Un atacante local podría acceder a los elementos del llavero. macOS Sequoia 15.6 addresses bypass, cross site scripting, integer overflow, out of bounds access, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/124149 • CWE-863: Incorrect Authorization •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-43267 – Apple Security Advisory 07-29-2025-3
https://notcve.org/view.php?id=CVE-2025-43267
29 Jul 2025 — Una aplicación podría acceder a datos confidenciales del usuario. macOS Sequoia 15.6 addresses bypass, cross site scripting, integer overflow, out of bounds access, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/124149 • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2025-43246 – Apple Security Advisory 07-29-2025-4
https://notcve.org/view.php?id=CVE-2025-43246
29 Jul 2025 — Una aplicación podría acceder a datos confidenciales del usuario. macOS Sequoia 15.6 addresses bypass, cross site scripting, integer overflow, out of bounds access, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/124149 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 0CVE-2025-43273 – Apple Security Advisory 07-29-2025-3
https://notcve.org/view.php?id=CVE-2025-43273
29 Jul 2025 — Un proceso en un entorno de pruebas podría eludir las restricciones del entorno de pruebas. macOS Sequoia 15.6 addresses bypass, cross site scripting, integer overflow, out of bounds access, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/124149 • CWE-693: Protection Mechanism Failure •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2025-43225 – Apple Security Advisory 07-29-2025-5
https://notcve.org/view.php?id=CVE-2025-43225
29 Jul 2025 — Una aplicación podría acceder a datos confidenciales del usuario. macOS Sequoia 15.6 addresses bypass, cross site scripting, integer overflow, out of bounds access, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/124148 • CWE-532: Insertion of Sensitive Information into Log File •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2025-43248 – Apple Security Advisory 07-29-2025-4
https://notcve.org/view.php?id=CVE-2025-43248
29 Jul 2025 — Una aplicación maliciosa podría obtener privilegios de root. macOS Sequoia 15.6 addresses bypass, cross site scripting, integer overflow, out of bounds access, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/124149 • CWE-269: Improper Privilege Management •
CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 0CVE-2025-43229 – Apple Security Advisory 07-29-2025-3
https://notcve.org/view.php?id=CVE-2025-43229
29 Jul 2025 — El procesamiento de contenido web manipulado con fines malintencionados puede provocar ataques de cross-site scripting. macOS Sequoia 15.6 addresses bypass, cross site scripting, integer overflow, out of bounds access, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/124149 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •