apple
8,695 tracked vulnerabilities.
CVE-2025-31207
HIGH
iPadOS < 18.5 - Unauthorized App Enumeration
May 12, 2025
CVSS 7.7
EPSS 0.00
CVE-2025-31206
MEDIUM
Safari < 18.5 - Type Confusion via Malicious Web Content
May 12, 2025
CVSS 4.3
EPSS 0.01
CVE-2025-31205
MEDIUM
Safari < 18.5 - Cross-Site Request Forgery
May 12, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-31204
HIGH
Safari < 18.5 - Memory Corruption via Malicious Web Content
May 12, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-31196
MEDIUM
iPadOS < 17.7.7 - Out-of-bounds Read
May 12, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-31195
MEDIUM
macOS < 15.4 - Sandbox Escape via Improper Access Control
May 12, 2025
CVSS 6.3
EPSS 0.00
CVE-2025-30453
HIGH
macOS < 13.7.6, < 14.7.6, < 15.4 - Privilege Escalation to Root
May 12, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-30448
CRITICAL
iPadOS < 17.7.7 - Unauthenticated iCloud Folder Sharing Enablement
May 12, 2025
CVSS 9.1
EPSS 0.01
CVE-2025-30442
HIGH
macOS < 13.7.6, < 14.7.6, < 15.4 - Privilege Escalation
May 12, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-30440
MEDIUM
macOS < 13.7.6, < 14.7.6, < 15.5 - ASLR Bypass via Incorrect Authorization
May 12, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-30436
CRITICAL
iPadOS < 18.4 - Improper Access Control via Siri Auto-Answer Calls
May 12, 2025
CVSS 9.1
EPSS 0.00
CVE-2025-24274
HIGH
macOS < 13.7.6, < 14.7.6, < 15.5 - Privilege Escalation to Root
May 12, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-24258
HIGH
macOS < 13.7.6, < 14.7.6, < 15.4 - Privilege Escalation to Root
May 12, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-24225
MEDIUM
iPadOS < 17.7.7 and < 18.5 - Cross-Site Scripting via Email Processing
May 12, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-24223
HIGH
Safari < 18.5 - Memory Corruption via Malicious Web Content
May 12, 2025
CVSS 8.0
EPSS 0.00
CVE-2025-24222
MEDIUM
macOS < 15.5 - Denial of Service via Malicious Web Content
May 12, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-24220
MEDIUM
iPadOS < 18.4 - Unauthorized Sensitive Information Exposure via Persistent Device Identifier
May 12, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-24155
MEDIUM
macOS < 13.7.6, < 14.7.6, < 15.3 - Kernel Memory Disclosure
May 12, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-24144
MEDIUM
Apple iPadOS < 17.7.7 - Information Disclosure via Kernel State Leak
May 12, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-24142
MEDIUM
macOS < 13.7.6, < 14.7.6, < 15.5 - Unprotected User Data Exposure via Log Entry Redaction
May 12, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-24111
MEDIUM
iPadOS < 17.7.7 - Memory Corruption
May 12, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-30422
MEDIUM
AirPlay audio/video/CarPlay - Buffer Overflow
Apr 30, 2025
CVSS 6.5
EPSS 0.01
CVE-2025-24132
MEDIUM
AirPlay Audio and Video SDK < 2.7.1 and < 3.6.0.126 - Denial of Service via Memory Corruption
Apr 30, 2025
CVSS 6.5
EPSS 0.03
CVE-2025-24091
MEDIUM
iPadOS < 17.7.3 and < 18.3 - Authentication Bypass via System Notification Spoofing
Apr 30, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-31203
MEDIUM
iPadOS < 17.7.6 - Denial of Service via Integer Overflow
Apr 29, 2025
CVSS 6.5
EPSS 0.00
Products
iphone_os 4,053
mac_os_x 3,210
macos 2,755
tvos 2,005
ipados 1,936
watchos 1,779
safari 1,629
macOS 1,352
itunes 922
iOS and iPadOS 800
mac_os_x_server 655
visionOS 456
icloud 449
visionos 434
watchOS 434
tvOS 402
webkit 258
quicktime 246
Safari 211
iPadOS 131
xcode 95
ipad_os 89
cups 56
apple_tv 36
darwin_streaming_server 27
ipod_touch 18
Xcode 16
quicktime_streaming_server 16
airport_base_station_firmware 11
os_x_server 11
Quick Filters