apple
8,695 tracked vulnerabilities.
CVE-2025-43184
CRITICAL
macOS < 13.7.7, < 14.7.7, < 15.4 - Improper Access Control via Shortcuts App Settings Bypass
Jul 30, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-31281
CRITICAL
iPadOS < 18.6 - Denial of Service via Maliciously Crafted File
Jul 30, 2025
CVSS 9.1
EPSS 0.01
CVE-2025-31280
HIGH
macOS < 15.6 - Heap-based Buffer Overflow via Maliciously Crafted File
Jul 30, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-31279
CRITICAL
iPadOS < 17.7.9 and macOS < 13.7.7, < 14.7.7, < 15.6 - User Fingerprinting via Permissions Issue
Jul 30, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-31278
HIGH
Safari < 18.6 - Memory Corruption via Malicious Web Content
Jul 30, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-31277
HIGH
KEV
Safari < 18.6 - Memory Corruption via Malicious Web Content
Jul 30, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-31276
MEDIUM
iPadOS < 17.7.9 and < 18.6 - Unauthorized Remote Content Loading via Load Remote Images Setting Bypass
Jul 30, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-31275
MEDIUM
macOS Sequoia <15.6 - Privilege Escalation
Jul 30, 2025
CVSS 6.2
EPSS 0.00
CVE-2025-31273
HIGH
Safari < 18.6 - Memory Corruption via Maliciously Crafted Web Content
Jul 30, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-31243
HIGH
macOS < 13.7.7, < 14.7.7, < 15.6 - Privilege Escalation to Root
Jul 30, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-31229
CRITICAL
iPadOS < 18.6 - Unauthenticated Passcode Exposure via VoiceOver
Jul 30, 2025
CVSS 9.1
EPSS 0.01
CVE-2025-24224
HIGH
iPadOS < 17.7.9 - Denial of Service
Jul 30, 2025
CVSS 7.5
EPSS 0.01
CVE-2025-24188
MEDIUM
Safari < 18.6 and macOS < 15.6 - Denial of Service via Malicious Web Content
Jul 30, 2025
CVSS 6.5
EPSS 0.01
CVE-2025-24119
HIGH
macOS < 13.7.7, < 14.7.7, < 15.3 - Privilege Escalation via Improved State Management
Jul 30, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-6558
HIGH
KEV
Google Chrome <138.0.7204.157 - RCE
Jul 15, 2025
CVSS 8.8
EPSS 0.09
CVE-2025-6965
HIGH
SQLite < 3.50.2 - Memory Corruption via Aggregate Terms Overflow
Jul 15, 2025
CVSS 7.7
EPSS 0.73
CVE-2025-31267
MEDIUM
App Store Connect < 3.0 - Unauthenticated Sensitive Information Exposure via Physical Access
Jul 10, 2025
CVSS 4.6
EPSS 0.00
CVE-2025-48384
HIGH
KEV
Git < 2.43.7 - Unauthenticated Arbitrary Code Execution via Submodule Path Traversal
Jul 08, 2025
CVSS 8.0
EPSS 0.03
CVE-2025-43200
MEDIUM
KEV
iPadOS < 15.8.4 - Logic Issue in iCloud Link Photo/Video Processing
Jun 16, 2025
CVSS 4.2
EPSS 0.01
CVE-2025-31264
MEDIUM
macOS < 13.7.5, < 14.7.5, < 15.4 - Unauthenticated Sensitive User Data Exposure via Physical Access
May 29, 2025
CVSS 4.6
EPSS 0.00
CVE-2025-31263
CRITICAL
macOS < 15.4 - Memory Corruption in Coprocessor
May 29, 2025
CVSS 9.1
EPSS 0.00
CVE-2025-31261
MEDIUM
macOS < 13.7.5, < 14.7.5, < 15.4 - Unprotected User Data Exposure via Permissions Issue
May 29, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-31231
MEDIUM
macOS < 15.4 - Unauthorized Sensitive Location Information Exposure
May 29, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-31199
MEDIUM
iPadOS < 18.4 - Sensitive Information Disclosure via Log File Insertion
May 29, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-31198
MEDIUM
macOS < 13.7.5, < 14.7.5, < 15.4 - Path Traversal via Symlink Validation Bypass
May 29, 2025
CVSS 5.5
EPSS 0.00
Products
iphone_os 4,053
mac_os_x 3,210
macos 2,755
tvos 2,005
ipados 1,936
watchos 1,779
safari 1,629
macOS 1,352
itunes 922
iOS and iPadOS 800
mac_os_x_server 655
visionOS 456
icloud 449
visionos 434
watchOS 434
tvOS 402
webkit 258
quicktime 246
Safari 211
iPadOS 131
xcode 95
ipad_os 89
cups 56
apple_tv 36
darwin_streaming_server 27
ipod_touch 18
Xcode 16
quicktime_streaming_server 16
airport_base_station_firmware 11
os_x_server 11
Quick Filters