apple

8,635 tracked vulnerabilities.

CVE-2025-24181 CRITICAL
macOS < 13.7.5, < 14.7.5, < 15.4 - Unprotected User Data Exposure via Permissions Issue
Mar 31, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-24180 HIGH
Safari < 18.4 - Open Redirect via WebAuthn Credential Claiming
Mar 31, 2025
CVSS 8.1
EPSS 0.00
CVE-2025-24178 CRITICAL
iPadOS < 17.7.6 - Sandbox Escape via State Management Issue
Mar 31, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-24173 HIGH
iPadOS < 17.7.6 - Improper Access Control via Entitlement Check Bypass
Mar 31, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-24172 CRITICAL
macOS < 13.7.5, < 14.7.5, < 15.4 - Unprotected User Data Exposure via Mail Preview Permissions
Mar 31, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-24170 HIGH
macOS < 13.7.5 and < 14.7.5 - Privilege Escalation via Improper File Handling
Mar 31, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-24167 CRITICAL
Safari < 18.4 - Origin Spoofing via Download State Mismanagement
Mar 31, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-24164 MEDIUM
macOS < 13.7.5, < 14.7.5, < 15.4 - Unauthorized File System Modification
Mar 31, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-24157 MEDIUM
macOS < 13.7.5, < 14.7.5, < 15.4 - Buffer Overflow
Mar 31, 2025
CVSS 5.6
EPSS 0.00
CVE-2025-24148 MEDIUM
macOS <13.7.5-15.4-14.7.5 - Code Injection
Mar 31, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-24097 MEDIUM
iPadOS < 18.4 - Arbitrary File Metadata Read via Permissions Issue
Mar 31, 2025
CVSS 5.0
EPSS 0.00
CVE-2025-24095 HIGH
iPadOS < 18.4 - Authentication Bypass via Privacy Preferences
Mar 31, 2025
CVSS 7.6
EPSS 0.00
CVE-2025-24185 MEDIUM
macOS < 13.7.3, < 14.7.3, < 15.3 - Out-of-bounds Write
Mar 17, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-24201 CRITICAL KEV
Safari < 18.3.1 - Out-of-bounds Write via Maliciously Crafted Web Content
Mar 11, 2025
CVSS 10.0
EPSS 0.00
CVE-2025-24200 MEDIUM KEV
iPadOS < 15.8.4, < 16.7.11, < 17.7.5, < 18.3.1 - Authorization Bypass via USB Restricted Mode
Feb 10, 2025
CVSS 6.1
EPSS 0.44
CVE-2025-24099 MEDIUM
macOS < 13.7.3, < 14.7.3, < 15.3 - Privilege Escalation
Jan 30, 2025
CVSS 5.1
EPSS 0.00
CVE-2025-24177 HIGH
iPadOS < 18.3 - Denial of Service via Null Pointer Dereference
Jan 27, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-24176 HIGH
macOS < 13.7.3, < 14.7.3, < 15.3 - Privilege Escalation via Incorrect Default Permissions
Jan 27, 2025
CVSS 7.1
EPSS 0.00
CVE-2025-24174 HIGH
macOS < 13.7.3, < 14.7.3, < 15.3 - Privacy Preferences Bypass
Jan 27, 2025
CVSS 7.7
EPSS 0.00
CVE-2025-24169 HIGH
Safari < 18.3 and macOS < 15.3 - Sensitive Information Disclosure via Log File
Jan 27, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-24163 MEDIUM
iPadOS < 17.7.4 - Denial of Service via File Parsing
Jan 27, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-24162 MEDIUM
Safari < 18.3 - Out-of-bounds Read via Malicious Web Content
Jan 27, 2025
CVSS 6.5
EPSS 0.01
CVE-2025-24161 MEDIUM
iPadOS < 17.7.4 - Denial of Service via File Parsing
Jan 27, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-24160 MEDIUM
iPadOS < 17.7.4 - Denial of Service via File Parsing
Jan 27, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-24159 HIGH
iPadOS < 17.7.4 - Arbitrary Code Execution with Kernel Privileges
Jan 27, 2025
CVSS 7.8
EPSS 0.00
Products
iphone_os 4,014 mac_os_x 3,210 macos 2,696 tvos 2,004 ipados 1,897 watchos 1,778 safari 1,598 macOS 1,296 itunes 922 iOS and iPadOS 762 mac_os_x_server 655 visionOS 456 icloud 449 watchOS 434 visionos 433 tvOS 402 webkit 258 quicktime 246 Safari 180 iPadOS 131 xcode 95 ipad_os 89 cups 56 apple_tv 36 darwin_streaming_server 27 ipod_touch 18 Xcode 16 quicktime_streaming_server 16 airport_base_station_firmware 11 os_x_server 11
Quick Filters
Critical CVEs With Exploits In CISA KEV