CVE-2025-43340 - Apple macOS Tahoe Sandbox Escalation
CVE ID : CVE-2025-43340
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Tahoe 26. An app may be able to break out of its sandbox.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-43340
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Tahoe 26. An app may be able to break out of its sandbox.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-43341 - MacOS Root Privilege Escalation Vulnerability
CVE ID : CVE-2025-43341
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sonoma 14.8, macOS Tahoe 26. An app may be able to gain root privileges.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-43341
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sonoma 14.8, macOS Tahoe 26. An app may be able to gain root privileges.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-43342 - Apple Safari Web Content Crash
CVE ID : CVE-2025-43342
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : A correctness issue was addressed with improved checks. This issue is fixed in tvOS 26, Safari 26, iOS 18.7 and iPadOS 18.7, visionOS 26, watchOS 26, macOS Tahoe 26, iOS 26 and iPadOS 26. Processing maliciously crafted web content may lead to an unexpected process crash.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-43342
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : A correctness issue was addressed with improved checks. This issue is fixed in tvOS 26, Safari 26, iOS 18.7 and iPadOS 18.7, visionOS 26, watchOS 26, macOS Tahoe 26, iOS 26 and iPadOS 26. Processing maliciously crafted web content may lead to an unexpected process crash.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-43343 - Apple Safari Web Content Processing Crash
CVE ID : CVE-2025-43343
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : The issue was addressed with improved memory handling. This issue is fixed in tvOS 26, Safari 26, visionOS 26, watchOS 26, macOS Tahoe 26, iOS 26 and iPadOS 26. Processing maliciously crafted web content may lead to an unexpected process crash.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-43343
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : The issue was addressed with improved memory handling. This issue is fixed in tvOS 26, Safari 26, visionOS 26, watchOS 26, macOS Tahoe 26, iOS 26 and iPadOS 26. Processing maliciously crafted web content may lead to an unexpected process crash.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-43344 - Apple tvOS/WatchOS/macOS/iOS/iPadOS Out-of-Bounds Access Vulnerability
CVE ID : CVE-2025-43344
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in tvOS 26, watchOS 26, visionOS 26, macOS Tahoe 26, iOS 26 and iPadOS 26. An app may be able to cause unexpected system termination.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-43344
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in tvOS 26, watchOS 26, visionOS 26, macOS Tahoe 26, iOS 26 and iPadOS 26. An app may be able to cause unexpected system termination.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-43346 - Apple Media File Out-of-Bounds Access Vulnerability
CVE ID : CVE-2025-43346
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in tvOS 26, watchOS 26, iOS 18.7 and iPadOS 18.7, visionOS 26, macOS Tahoe 26, iOS 26 and iPadOS 26. Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-43346
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in tvOS 26, watchOS 26, iOS 18.7 and iPadOS 18.7, visionOS 26, macOS Tahoe 26, iOS 26 and iPadOS 26. Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-43347 - Apple tvOS Validation Bypass
CVE ID : CVE-2025-43347
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : This issue was addressed by removing the vulnerable code. This issue is fixed in tvOS 26, watchOS 26, visionOS 26, macOS Tahoe 26, iOS 26 and iPadOS 26. An input validation issue was addressed.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-43347
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : This issue was addressed by removing the vulnerable code. This issue is fixed in tvOS 26, watchOS 26, visionOS 26, macOS Tahoe 26, iOS 26 and iPadOS 26. An input validation issue was addressed.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-43349 - Apple Video File Processing Out-of-Bounds Write
CVE ID : CVE-2025-43349
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in tvOS 26, macOS Sonoma 14.8, macOS Sequoia 15.7, iOS 18.7 and iPadOS 18.7, visionOS 26, watchOS 26, macOS Tahoe 26, iOS 26 and iPadOS 26. Processing a maliciously crafted video file may lead to unexpected app termination.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-43349
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in tvOS 26, macOS Sonoma 14.8, macOS Sequoia 15.7, iOS 18.7 and iPadOS 18.7, visionOS 26, watchOS 26, macOS Tahoe 26, iOS 26 and iPadOS 26. Processing a maliciously crafted video file may lead to unexpected app termination.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-43353 - Apple macOS Heap Corruption Vulnerability
CVE ID : CVE-2025-43353
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : The issue was addressed with improved bounds checks. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. Processing a maliciously crafted string may lead to heap corruption.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-43353
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : The issue was addressed with improved bounds checks. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. Processing a maliciously crafted string may lead to heap corruption.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-43354 - Apple tvOS/WatchOS/macOS/iOS/iPadOS Sensitive Data Exposure
CVE ID : CVE-2025-43354
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : A logging issue was addressed with improved data redaction. This issue is fixed in tvOS 26, watchOS 26, visionOS 26, macOS Tahoe 26, iOS 26 and iPadOS 26. An app may be able to access sensitive user data.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-43354
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : A logging issue was addressed with improved data redaction. This issue is fixed in tvOS 26, watchOS 26, visionOS 26, macOS Tahoe 26, iOS 26 and iPadOS 26. An app may be able to access sensitive user data.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-43355 - Apple TVOS WatchOS Denial-of-Service Type Confusion
CVE ID : CVE-2025-43355
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : A type confusion issue was addressed with improved memory handling. This issue is fixed in tvOS 26, macOS Sonoma 14.8, macOS Sequoia 15.7, iOS 18.7 and iPadOS 18.7, visionOS 26, watchOS 26, macOS Tahoe 26, iOS 26 and iPadOS 26. An app may be able to cause a denial-of-service.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-43355
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : A type confusion issue was addressed with improved memory handling. This issue is fixed in tvOS 26, macOS Sonoma 14.8, macOS Sequoia 15.7, iOS 18.7 and iPadOS 18.7, visionOS 26, watchOS 26, macOS Tahoe 26, iOS 26 and iPadOS 26. An app may be able to cause a denial-of-service.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-43356 - Apple Safari Sensor Information Disclosure Vulnerability
CVE ID : CVE-2025-43356
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : The issue was addressed with improved handling of caches. This issue is fixed in tvOS 26, Safari 26, iOS 18.7 and iPadOS 18.7, visionOS 26, watchOS 26, macOS Tahoe 26, iOS 26 and iPadOS 26. A website may be able to access sensor information without user consent.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-43356
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : The issue was addressed with improved handling of caches. This issue is fixed in tvOS 26, Safari 26, iOS 18.7 and iPadOS 18.7, visionOS 26, watchOS 26, macOS Tahoe 26, iOS 26 and iPadOS 26. A website may be able to access sensor information without user consent.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-43357 - Apple Device User Fingerprinting Vulnerability
CVE ID : CVE-2025-43357
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Tahoe 26, iOS 26 and iPadOS 26. An app may be able to fingerprint the user.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-43357
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Tahoe 26, iOS 26 and iPadOS 26. An app may be able to fingerprint the user.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-43358 - Apple macOS/iOS/iPadOS Sandbox Bypass Permissions Vulnerability
CVE ID : CVE-2025-43358
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, iOS 18.7 and iPadOS 18.7, macOS Tahoe 26, iOS 26 and iPadOS 26. A shortcut may be able to bypass sandbox restrictions.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-43358
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, iOS 18.7 and iPadOS 18.7, macOS Tahoe 26, iOS 26 and iPadOS 26. A shortcut may be able to bypass sandbox restrictions.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-43359 - Apple tvOS/OS/watchOS/macOS Network Socket Binding Vulnerability
CVE ID : CVE-2025-43359
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : A logic issue was addressed with improved state management. This issue is fixed in tvOS 26, macOS Sonoma 14.8, macOS Sequoia 15.7, iOS 18.7 and iPadOS 18.7, visionOS 26, watchOS 26, macOS Tahoe 26, iOS 26 and iPadOS 26. A UDP server socket bound to a local interface may become bound to all interfaces.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-43359
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : A logic issue was addressed with improved state management. This issue is fixed in tvOS 26, macOS Sonoma 14.8, macOS Sequoia 15.7, iOS 18.7 and iPadOS 18.7, visionOS 26, watchOS 26, macOS Tahoe 26, iOS 26 and iPadOS 26. A UDP server socket bound to a local interface may become bound to all interfaces.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-43362 - Apple iOS Keystroke Monitoring Vulnerability
CVE ID : CVE-2025-43362
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : The issue was addressed with improved checks. This issue is fixed in iOS 18.7 and iPadOS 18.7, iOS 26 and iPadOS 26. An app may be able to monitor keystrokes without user permission.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-43362
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : The issue was addressed with improved checks. This issue is fixed in iOS 18.7 and iPadOS 18.7, iOS 26 and iPadOS 26. An app may be able to monitor keystrokes without user permission.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-43366 - Apple macOS Tahoe Coprocessor Memory Disclosure
CVE ID : CVE-2025-43366
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Tahoe 26. An app may be able to disclose coprocessor memory.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-43366
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Tahoe 26. An app may be able to disclose coprocessor memory.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-43367 - "Apple macOS User Data Protection Bypass"
CVE ID : CVE-2025-43367
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : A privacy issue was addressed by moving sensitive data. This issue is fixed in macOS Sonoma 14.8, macOS Tahoe 26. An app may be able to access protected user data.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-43367
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : A privacy issue was addressed by moving sensitive data. This issue is fixed in macOS Sonoma 14.8, macOS Tahoe 26. An app may be able to access protected user data.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-43368 - Safari Use-After-Free Vulnerability
CVE ID : CVE-2025-43368
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26, macOS Tahoe 26, iOS 26 and iPadOS 26. Processing maliciously crafted web content may lead to an unexpected Safari crash.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-43368
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26, macOS Tahoe 26, iOS 26 and iPadOS 26. Processing maliciously crafted web content may lead to an unexpected Safari crash.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-43369 - Apple macOS Tahoe Symlink Privilege Escalation
CVE ID : CVE-2025-43369
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Tahoe 26. An app may be able to access protected user data.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-43369
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Tahoe 26. An app may be able to access protected user data.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-43370 - Apple Xcode Path Handling Buffer Overflow
CVE ID : CVE-2025-43370
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : A path handling issue was addressed with improved validation. This issue is fixed in Xcode 26. Processing an overly large path value may crash a process.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-43370
Published : Sept. 15, 2025, 11:15 p.m. | 1 hour, 43 minutes ago
Description : A path handling issue was addressed with improved validation. This issue is fixed in Xcode 26. Processing an overly large path value may crash a process.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...