CVSS: 6.2EPSS: 0%CPEs: 3EXPL: 0CVE-2025-43191 – Apple Security Advisory 07-29-2025-5
https://notcve.org/view.php?id=CVE-2025-43191
29 Jul 2025 — A path handling issue was addressed with improved validation. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may be able to cause a denial-of-service. Se solucionó un problema de gestión de rutas mejorando la validación. Este problema se solucionó en macOS Sequoia 15.6, macOS Sonoma 14.7.7 y macOS Ventura 13.7.7. • https://support.apple.com/en-us/124149 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2025-43237 – Apple Security Advisory 07-29-2025-3
https://notcve.org/view.php?id=CVE-2025-43237
29 Jul 2025 — An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in macOS Sequoia 15.6. An app may be able to cause unexpected system termination. Se solucionó un problema de escritura fuera de límites mejorando la comprobación de límites. Este problema se solucionó en macOS Sequoia 15.6. • https://support.apple.com/en-us/124149 • CWE-787: Out-of-bounds Write •
CVSS: 4.0EPSS: 0%CPEs: 3EXPL: 0CVE-2025-43197 – Apple Security Advisory 07-29-2025-5
https://notcve.org/view.php?id=CVE-2025-43197
29 Jul 2025 — This issue was addressed with additional entitlement checks. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may be able to access sensitive user data. Este problema se solucionó con comprobaciones adicionales de derechos. Este problema está corregido en macOS Sequoia 15.6, macOS Sonoma 14.7.7 y macOS Ventura 13.7.7. • https://support.apple.com/en-us/124149 • CWE-863: Incorrect Authorization •
CVSS: 4.0EPSS: 0%CPEs: 3EXPL: 0CVE-2025-43206 – Apple Security Advisory 07-29-2025-5
https://notcve.org/view.php?id=CVE-2025-43206
29 Jul 2025 — A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Sequoia 15.6, macOS Ventura 13.7.7, macOS Sonoma 14.7.7. An app may be able to access protected user data. Se solucionó un problema de análisis en el manejo de rutas de directorio mejorando la validación de rutas. Este problema se solucionó en macOS Sequoia 15.6, macOS Ventura 13.7.7 y macOS Sonoma 14.7.7. • https://support.apple.com/en-us/124149 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2025-43196 – Apple Security Advisory 07-29-2025-5
https://notcve.org/view.php?id=CVE-2025-43196
29 Jul 2025 — A path handling issue was addressed with improved validation. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may be able to gain root privileges. Se solucionó un problema de gestión de rutas mejorando la validación. Este problema se solucionó en macOS Sequoia 15.6, macOS Sonoma 14.7.7 y macOS Ventura 13.7.7. • https://support.apple.com/en-us/124149 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 6.5EPSS: 0%CPEs: 7EXPL: 0CVE-2025-43265 – webkitgtk: Processing maliciously crafted web content may disclose internal states of the app
https://notcve.org/view.php?id=CVE-2025-43265
29 Jul 2025 — An out-of-bounds read was addressed with improved input validation. This issue is fixed in Safari 18.6, watchOS 11.6, visionOS 2.6, iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6. Processing maliciously crafted web content may disclose internal states of the app. Se solucionó una lectura fuera de los límites mejorando la validación de entrada. Este problema se solucionó en watchOS 11.6, visionOS 2.6, iOS 18.6 y iPadOS 18.6, macOS Sequoia 15.6 y tvOS 18.6. • https://support.apple.com/en-us/124147 • CWE-125: Out-of-bounds Read •
CVSS: 10.0EPSS: 0%CPEs: 3EXPL: 0CVE-2025-43233 – Apple Security Advisory 07-29-2025-5
https://notcve.org/view.php?id=CVE-2025-43233
29 Jul 2025 — This issue was addressed with improved access restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. A malicious app acting as a HTTPS proxy could get access to sensitive user data. Este problema se solucionó mejorando las restricciones de acceso. Este problema está corregido en macOS Sequoia 15.6, macOS Sonoma 14.7.7 y macOS Ventura 13.7.7. • https://support.apple.com/en-us/124149 • CWE-284: Improper Access Control •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2025-24188 – Apple Security Advisory 07-29-2025-3
https://notcve.org/view.php?id=CVE-2025-24188
29 Jul 2025 — A logic issue was addressed with improved checks. This issue is fixed in Safari 18.6, macOS Sequoia 15.6. Processing maliciously crafted web content may lead to an unexpected Safari crash. Se solucionó un problema lógico mejorando las comprobaciones. Este problema se solucionó en macOS Sequoia 15.6. • https://support.apple.com/en-us/124149 • CWE-703: Improper Check or Handling of Exceptional Conditions •
CVSS: 8.8EPSS: 0%CPEs: 8EXPL: 0CVE-2025-43216 – webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash
https://notcve.org/view.php?id=CVE-2025-43216
29 Jul 2025 — A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 18.6, watchOS 11.6, iOS 18.6 and iPadOS 18.6, iPadOS 17.7.9, tvOS 18.6, macOS Sequoia 15.6, visionOS 2.6. Processing maliciously crafted web content may lead to an unexpected Safari crash. Se solucionó un problema de use-after-free mediante una mejor gestión de la memoria. Este problema se solucionó en watchOS 11.6, iOS 18.6 y iPadOS 18.6, iPadOS 17.7.9, tvOS 18.6, macOS Sequoia 15.6 y visionOS 2.6. • https://support.apple.com/en-us/124147 • CWE-416: Use After Free •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2025-43276 – Apple Security Advisory 07-29-2025-3
https://notcve.org/view.php?id=CVE-2025-43276
29 Jul 2025 — A logic error was addressed with improved error handling. This issue is fixed in macOS Sequoia 15.6. iCloud Private Relay may not activate when more than one user is logged in at the same time. Se solucionó un error lógico mejorando la gestión de errores. Este problema se solucionó en macOS Sequoia 15.6. Es posible que la retransmisión privada de iCloud no se active si hay más de un usuario conectado simultáneamente. macOS Sequoia 15.6 addresses bypass, cross site scripting, integer overflow, out of bounds ... • https://support.apple.com/en-us/124149 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •