apple
8,695 tracked vulnerabilities.
CVE-2025-24176
HIGH
macOS < 13.7.3, < 14.7.3, < 15.3 - Privilege Escalation via Incorrect Default Permissions
Jan 27, 2025
CVSS 7.1
EPSS 0.00
CVE-2025-24174
HIGH
macOS < 13.7.3, < 14.7.3, < 15.3 - Privacy Preferences Bypass
Jan 27, 2025
CVSS 7.7
EPSS 0.00
CVE-2025-24169
HIGH
Safari < 18.3 and macOS < 15.3 - Sensitive Information Disclosure via Log File
Jan 27, 2025
CVSS 7.5
EPSS 0.01
CVE-2025-24163
MEDIUM
iPadOS < 17.7.4 - Denial of Service via File Parsing
Jan 27, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-24162
MEDIUM
Safari < 18.3 - Out-of-bounds Read via Malicious Web Content
Jan 27, 2025
CVSS 6.5
EPSS 0.01
CVE-2025-24161
MEDIUM
iPadOS < 17.7.4 - Denial of Service via File Parsing
Jan 27, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-24160
MEDIUM
iPadOS < 17.7.4 - Denial of Service via File Parsing
Jan 27, 2025
CVSS 4.3
EPSS 0.01
CVE-2025-24159
HIGH
iPadOS < 17.7.4 - Arbitrary Code Execution with Kernel Privileges
Jan 27, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-24158
MEDIUM
Safari < 18.3 - Denial of Service via Web Content Processing
Jan 27, 2025
CVSS 6.5
EPSS 0.01
CVE-2025-24156
HIGH
macOS < 13.7.3, < 14.7.3, < 15.3 - Privilege Escalation via Integer Overflow
Jan 27, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-24154
CRITICAL
iPadOS < 18.3 - Out-of-Bounds Write via Improved Input Validation
Jan 27, 2025
CVSS 9.1
EPSS 0.01
CVE-2025-24153
MEDIUM
macOS < 15.3 - Authenticated Buffer Overflow to Kernel Code Execution
Jan 27, 2025
CVSS 6.7
EPSS 0.00
CVE-2025-24152
MEDIUM
macOS Sequoia <15.3 - Memory Corruption
Jan 27, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-24151
MEDIUM
macOS < 13.7.3, < 14.7.3, < 15.3 - Denial of Service via Memory Corruption
Jan 27, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-24150
HIGH
Safari < 18.3 - Command Injection via Web Inspector URL Copy
Jan 27, 2025
CVSS 8.8
EPSS 0.03
CVE-2025-24149
MEDIUM
iPadOS < 17.7.4 - Out-of-bounds Read via File Parsing
Jan 27, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-24146
CRITICAL
macOS < 13.7.3, < 14.7.3, < 15.3 - Unprotected User Contact Information Exposure via Messages Conversation Deletion
Jan 27, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-24145
LOW
iPadOS < 18.3 - Unprotected Contact Phone Number Exposure in System Logs
Jan 27, 2025
CVSS 3.3
EPSS 0.00
CVE-2025-24143
MEDIUM
Safari < 18.3 - Unauthenticated User Fingerprinting via File System Access
Jan 27, 2025
CVSS 6.5
EPSS 0.01
CVE-2025-24141
LOW
iPadOS < 18.3 - Unauthenticated Photos Access via Locked App Bypass
Jan 27, 2025
CVSS 3.3
EPSS 0.00
CVE-2025-24140
MEDIUM
macOS < 15.3 - Unprotected User Data Exposure via Quarantine Flag Bypass
Jan 27, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-24139
MEDIUM
macOS < 13.7.3, < 13.7.5, < 14.7.3, < 15.3 - Out-of-bounds Write
Jan 27, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-24138
MEDIUM
macOS < 13.7.3, < 14.7.3, < 15.3 - Unprotected User Data Exposure
Jan 27, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-24137
HIGH
iPadOS < 17.7.4 - Type Confusion
Jan 27, 2025
CVSS 8.0
EPSS 0.01
CVE-2025-24136
MEDIUM
macOS < 13.7.3, < 14.7.3, < 15.3 - Unauthorized Symlink Creation to Protected Disk Regions
Jan 27, 2025
CVSS 4.4
EPSS 0.00
Products
iphone_os 4,053
mac_os_x 3,210
macos 2,755
tvos 2,005
ipados 1,936
watchos 1,779
safari 1,629
macOS 1,352
itunes 922
iOS and iPadOS 800
mac_os_x_server 655
visionOS 456
icloud 449
visionos 434
watchOS 434
tvOS 402
webkit 258
quicktime 246
Safari 211
iPadOS 131
xcode 95
ipad_os 89
cups 56
apple_tv 36
darwin_streaming_server 27
ipod_touch 18
Xcode 16
quicktime_streaming_server 16
airport_base_station_firmware 11
os_x_server 11
Quick Filters