9.8

CVSS3.1

CVE-2025-43220 - Symlink Validation Flaw Enables Unauthorized Access to Protected User Data

This issue was addressed with improved validation of symlinks. This issue is fixed in iPadOS 17.7.9, macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may be able to access protected user data.

πŸ“… Published: July 29, 2025, 11:29 p.m. πŸ”„ Last Modified: April 28, 2026, 7 p.m.

5.5

CVSS3.1

CVE-2025-43241 -

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may be able to read files outside of its sandbox.

πŸ“… Published: July 29, 2025, 11:29 p.m. πŸ”„ Last Modified: April 2, 2026, 7:20 p.m.

6.2

CVSS3.1

CVE-2025-43240 - webkitgtk: A download’s origin may be incorrectly associated

A logic issue was addressed with improved checks. This issue is fixed in Safari 18.6, macOS Sequoia 15.6. A download's origin may be incorrectly associated.

πŸ“… Published: July 29, 2025, 11:29 p.m. πŸ”„ Last Modified: April 2, 2026, 7:20 p.m.

7.8

CVSS3.1

CVE-2025-43256 - Privilege Escalation via Improper State Management in macOS

This issue was addressed through improved state management. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7. An app may be able to gain root privileges.

πŸ“… Published: July 29, 2025, 11:29 p.m. πŸ”„ Last Modified: April 28, 2026, 1 a.m.

7.1

CVSS3.1

CVE-2025-43221 - Out‑of‑Bounds Access in Media File Processing Causing App Termination or Memory Corruption

An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6, visionOS 2.6. Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory.

πŸ“… Published: July 29, 2025, 11:29 p.m. πŸ”„ Last Modified: April 28, 2026, 1 a.m.

5.5

CVSS3.1

CVE-2025-43251 - Local Authorization Escalation to Access Keychain Items

An authorization issue was addressed with improved state management. This issue is fixed in macOS Sequoia 15.6. A local attacker may gain access to Keychain items.

πŸ“… Published: July 29, 2025, 11:29 p.m. πŸ”„ Last Modified: April 28, 2026, 1 a.m.

5.5

CVSS3.1

CVE-2025-43267 - Injection Vulnerability Allowing App Access to Sensitive User Data

An injection issue was addressed with improved validation. This issue is fixed in macOS Sequoia 15.6. An app may be able to access sensitive user data.

πŸ“… Published: July 29, 2025, 11:29 p.m. πŸ”„ Last Modified: April 28, 2026, 1 a.m.

5.5

CVSS3.1

CVE-2025-43246 -

This issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7. An app may be able to access sensitive user data.

πŸ“… Published: July 29, 2025, 11:29 p.m. πŸ”„ Last Modified: April 2, 2026, 6:18 p.m.

9.1

CVSS3.1

CVE-2025-43273 - Sandbox Escape Vulnerability in macOS

A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.8. A sandboxed process may be able to circumvent sandbox restrictions.

πŸ“… Published: July 29, 2025, 11:29 p.m. πŸ”„ Last Modified: April 28, 2026, 1 a.m.

8.8

CVSS3.1

CVE-2025-31273 - webkitgtk: Processing maliciously crafted web content may lead to memory corruption

The issue was addressed with improved memory handling. This issue is fixed in Safari 18.6, iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6, visionOS 2.6, watchOS 11.6. Processing maliciously crafted web content may lead to memory corruption.

πŸ“… Published: July 29, 2025, 11:29 p.m. πŸ”„ Last Modified: April 2, 2026, 7:19 p.m.
Total resulsts: 347586
Page 4311 of 34,759
Β« previous page Β» next page
Filters