apple
8,695 tracked vulnerabilities.
CVE-2025-24260
CRITICAL
macOS 13.0-13.7.4, 14.0-14.7.4, 15.0-15.3 - Denial of Service via Memory Handling Issue
Mar 31, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-24259
CRITICAL
macOS 13.0-13.7.4, 14.0-14.7.4, 15.0-15.3 - Missing Authorization for Safari Bookmarks Access
Mar 31, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-24257
HIGH
iPadOS < 18.4 - Out-of-bounds Write
Mar 31, 2025
CVSS 7.1
EPSS 0.00
CVE-2025-24256
CRITICAL
macOS < 13.7.5, < 14.7.5, < 15.4 - Out-of-bounds Read
Mar 31, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-24255
HIGH
macOS < 13.7.5, < 14.7.5, < 15.4 - Sandbox Escape via Improved Input Validation
Mar 31, 2025
CVSS 8.4
EPSS 0.00
CVE-2025-24254
HIGH
macOS < 13.7.5, < 14.7.5, < 15.4 - Privilege Escalation via Symlink Validation Bypass
Mar 31, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-24253
CRITICAL
macOS < 13.7.5, 14.7.5, 15.4 - Unprotected User Data Exposure via Symlink Handling
Mar 31, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-24250
CRITICAL
macOS < 13.7.5, < 14.7.5, < 15.4 - Unprotected User Data Exposure via Malicious HTTPS Proxy
Mar 31, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-24249
CRITICAL
macOS < 13.7.5, 14.7.5, 15.4 - Unauthorized File Path Existence Check
Mar 31, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-24248
MEDIUM
macOS < 15.4 - Unprotected User Device Enumeration via Apple Account
Mar 31, 2025
CVSS 5.0
EPSS 0.00
CVE-2025-24247
CRITICAL
macOS < 13.7.5, < 14.7.5, < 15.4 - Denial of Service via Type Confusion
Mar 31, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-24246
CRITICAL
macOS 13.0-13.7.4, <14.7.5, <15.4 - Unauthorized User Data Access via Injection Issue
Mar 31, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-24245
CRITICAL
macOS < 15.4 - Unauthorized Password Access via Verification Code Delay Bypass
Mar 31, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-24244
MEDIUM
iPadOS < 17.7.6 - Exposure of Sensitive Information via Maliciously Crafted Font
Mar 31, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-24243
HIGH
Apple iPadOS < 17.7.6 - Remote Code Execution via Maliciously Crafted File
Mar 31, 2025
CVSS 7.8
EPSS 0.01
CVE-2025-24242
MEDIUM
macOS < 15.4 - Unprotected User Data Exposure via Symlink Handling
Mar 31, 2025
CVSS 4.4
EPSS 0.00
CVE-2025-24241
CRITICAL
macOS < 13.7.5, 14.7.5, 15.4 - Unprotected User Data Exposure via Pasteboard
Mar 31, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-24240
MEDIUM
macOS < 13.7.5, < 14.7.5, < 15.4 - Unprotected User Data Exposure via Race Condition
Mar 31, 2025
CVSS 4.7
EPSS 0.00
CVE-2025-24239
MEDIUM
macOS < 15.4 - Unprotected User Data Exposure via Downgrade Attack
Mar 31, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-24238
CRITICAL
iPadOS < 18.4 - Incorrect Default Permissions
Mar 31, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-24237
CRITICAL
iPadOS < 17.7.6 - Buffer Overflow
Mar 31, 2025
CVSS 9.8
EPSS 0.02
CVE-2025-24236
MEDIUM
macOS < 14.7.5 and < 15.4 - Unprotected User Data Exposure via Sandbox Restriction Bypass
Mar 31, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-24235
MEDIUM
macOS 13.0-13.7.4, <14.7.5, <15.4 - Denial of Service via Memory Initialization Issue
Mar 31, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-24234
HIGH
macOS < 13.7.5, < 14.7.5, < 15.4 - Privilege Escalation to Root
Mar 31, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-24233
CRITICAL
macOS < 13.7.5, < 14.7.5, < 15.4 - Unauthorized File Access via Permissions Issue
Mar 31, 2025
CVSS 9.8
EPSS 0.01
Products
iphone_os 4,053
mac_os_x 3,210
macos 2,755
tvos 2,005
ipados 1,936
watchos 1,779
safari 1,629
macOS 1,352
itunes 922
iOS and iPadOS 800
mac_os_x_server 655
visionOS 456
icloud 449
visionos 434
watchOS 434
tvOS 402
webkit 258
quicktime 246
Safari 211
iPadOS 131
xcode 95
ipad_os 89
cups 56
apple_tv 36
darwin_streaming_server 27
ipod_touch 18
Xcode 16
quicktime_streaming_server 16
airport_base_station_firmware 11
os_x_server 11
Quick Filters