apple

8,695 tracked vulnerabilities.

CVE-2025-24260 CRITICAL
macOS 13.0-13.7.4, 14.0-14.7.4, 15.0-15.3 - Denial of Service via Memory Handling Issue
Mar 31, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-24259 CRITICAL
macOS 13.0-13.7.4, 14.0-14.7.4, 15.0-15.3 - Missing Authorization for Safari Bookmarks Access
Mar 31, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-24257 HIGH
iPadOS < 18.4 - Out-of-bounds Write
Mar 31, 2025
CVSS 7.1
EPSS 0.00
CVE-2025-24256 CRITICAL
macOS < 13.7.5, < 14.7.5, < 15.4 - Out-of-bounds Read
Mar 31, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-24255 HIGH
macOS < 13.7.5, < 14.7.5, < 15.4 - Sandbox Escape via Improved Input Validation
Mar 31, 2025
CVSS 8.4
EPSS 0.00
CVE-2025-24254 HIGH
macOS < 13.7.5, < 14.7.5, < 15.4 - Privilege Escalation via Symlink Validation Bypass
Mar 31, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-24253 CRITICAL
macOS < 13.7.5, 14.7.5, 15.4 - Unprotected User Data Exposure via Symlink Handling
Mar 31, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-24250 CRITICAL
macOS < 13.7.5, < 14.7.5, < 15.4 - Unprotected User Data Exposure via Malicious HTTPS Proxy
Mar 31, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-24249 CRITICAL
macOS < 13.7.5, 14.7.5, 15.4 - Unauthorized File Path Existence Check
Mar 31, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-24248 MEDIUM
macOS < 15.4 - Unprotected User Device Enumeration via Apple Account
Mar 31, 2025
CVSS 5.0
EPSS 0.00
CVE-2025-24247 CRITICAL
macOS < 13.7.5, < 14.7.5, < 15.4 - Denial of Service via Type Confusion
Mar 31, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-24246 CRITICAL
macOS 13.0-13.7.4, <14.7.5, <15.4 - Unauthorized User Data Access via Injection Issue
Mar 31, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-24245 CRITICAL
macOS < 15.4 - Unauthorized Password Access via Verification Code Delay Bypass
Mar 31, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-24244 MEDIUM
iPadOS < 17.7.6 - Exposure of Sensitive Information via Maliciously Crafted Font
Mar 31, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-24243 HIGH
Apple iPadOS < 17.7.6 - Remote Code Execution via Maliciously Crafted File
Mar 31, 2025
CVSS 7.8
EPSS 0.01
CVE-2025-24242 MEDIUM
macOS < 15.4 - Unprotected User Data Exposure via Symlink Handling
Mar 31, 2025
CVSS 4.4
EPSS 0.00
CVE-2025-24241 CRITICAL
macOS < 13.7.5, 14.7.5, 15.4 - Unprotected User Data Exposure via Pasteboard
Mar 31, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-24240 MEDIUM
macOS < 13.7.5, < 14.7.5, < 15.4 - Unprotected User Data Exposure via Race Condition
Mar 31, 2025
CVSS 4.7
EPSS 0.00
CVE-2025-24239 MEDIUM
macOS < 15.4 - Unprotected User Data Exposure via Downgrade Attack
Mar 31, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-24238 CRITICAL
iPadOS < 18.4 - Incorrect Default Permissions
Mar 31, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-24237 CRITICAL
iPadOS < 17.7.6 - Buffer Overflow
Mar 31, 2025
CVSS 9.8
EPSS 0.02
CVE-2025-24236 MEDIUM
macOS < 14.7.5 and < 15.4 - Unprotected User Data Exposure via Sandbox Restriction Bypass
Mar 31, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-24235 MEDIUM
macOS 13.0-13.7.4, <14.7.5, <15.4 - Denial of Service via Memory Initialization Issue
Mar 31, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-24234 HIGH
macOS < 13.7.5, < 14.7.5, < 15.4 - Privilege Escalation to Root
Mar 31, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-24233 CRITICAL
macOS < 13.7.5, < 14.7.5, < 15.4 - Unauthorized File Access via Permissions Issue
Mar 31, 2025
CVSS 9.8
EPSS 0.01