📦 Macos

This CVE describes a race condition vulnerability in Apple operating systems that allows shortcuts to bypass sandbox restrictions through improper handling of symbolic links. Attackers could potential...

A URL validation vulnerability in macOS and Safari allows web content opened via file URLs to bypass Lockdown Mode restrictions and access Web APIs that should be blocked. This affects macOS users wit...

This CVE describes an authentication bypass vulnerability in Apple's Photos app where unauthorized users can view photos in the Hidden Photos Album without proper authentication. It affects users of v...

This CVE describes a UDP socket binding vulnerability in Apple operating systems where a UDP server socket bound to a local interface may unexpectedly become bound to all interfaces. This affects mult...

This vulnerability in Apple's Safari browser and related operating systems allows processing malicious web content to cause unexpected process crashes. It affects users of Safari, iOS, iPadOS, tvOS, w...

An input validation vulnerability in Apple operating systems allows attackers to execute arbitrary code or cause denial of service by sending specially crafted input. This affects users of visionOS, t...

This CVE describes an authorization bypass vulnerability in Apple operating systems that allows malicious apps to access sensitive user data without proper permissions. It affects multiple Apple platf...

A sandbox escape vulnerability in macOS allows sandboxed processes to bypass security restrictions. This affects macOS systems running versions before Sonoma 14.8. Attackers could potentially execute ...

A race condition vulnerability in macOS allows malicious applications to escape their sandbox restrictions. This affects macOS Ventura, Sonoma, and Sequoia before specific security updates. Attackers ...

This vulnerability allows malicious applications to bypass security restrictions and execute arbitrary binaries on macOS devices. It affects macOS systems before specific security updates, potentially...

This CVE describes a sandbox escape vulnerability in macOS that allows malicious applications to break out of their security confinement. The vulnerability affects macOS Ventura, Sonoma, and Sequoia v...

A critical permissions bypass vulnerability in macOS allows malicious applications to modify protected file system areas. This affects macOS Ventura, Sonoma, and Sequoia before specific security updat...

This CVE describes a code-signing downgrade vulnerability in macOS that allows malicious applications to bypass security restrictions and access protected user data. The vulnerability affects macOS Ve...

This CVE describes a permissions vulnerability in macOS that allows applications to bypass certain Privacy preferences. Attackers could potentially access protected data or system resources without pr...

This CVE describes memory corruption vulnerabilities in Apple's graphics processing that could allow arbitrary code execution. Attackers can exploit these flaws by tricking users into processing malic...

This critical vulnerability in macOS allows an application to write data beyond allocated memory boundaries, potentially leading to system crashes or arbitrary code execution. It affects macOS systems...

This vulnerability allows malicious applications to bypass symlink validation and access protected user data on Apple devices. It affects users running vulnerable versions of iPadOS, macOS Sequoia, ma...

A use-after-free vulnerability (CWE-416) in Apple operating systems allows attackers to cause unexpected application termination. This affects macOS and iPadOS users running vulnerable versions. Succe...

This is a critical out-of-bounds memory access vulnerability in Apple's Safari browser across multiple Apple operating systems. Processing malicious web content can cause Safari to crash unexpectedly,...

This CVE describes a configuration bypass vulnerability in macOS that allows account-driven User Enrollment even when Lockdown Mode is enabled. This affects macOS systems running vulnerable versions, ...

A memory corruption vulnerability in Apple operating systems allows attackers with memory write capability to execute arbitrary code. This affects watchOS, tvOS, macOS, visionOS, iOS, and iPadOS versi...

This CVE describes a sandbox escape vulnerability in Apple operating systems where a malicious app could bypass security restrictions designed to isolate it from other apps and system resources. All u...

This CVE describes a memory handling vulnerability in Apple operating systems and Safari that could allow a remote attacker to cause denial-of-service. The issue affects macOS, iOS, iPadOS, visionOS, ...

A package validation vulnerability in macOS allows malicious applications to gain root privileges. This affects macOS systems running versions before Tahoe 26.3. Attackers could exploit this to execut...

This CVE describes a path handling vulnerability (CWE-22) in multiple Apple operating systems and Safari that allows a remote attacker to write arbitrary files to affected systems. The vulnerability a...

This CVE describes a privacy vulnerability in Apple operating systems where an app could potentially identify what other apps a user has installed, exposing sensitive user data. It affects multiple Ap...

This CVE describes a logging vulnerability where sensitive user information was not properly redacted in system logs. Attackers with access to log files could potentially view private user data. The v...

This CVE describes a Bluetooth denial-of-service vulnerability affecting multiple Apple operating systems. An attacker in a privileged network position can send crafted Bluetooth packets to cause deni...

This vulnerability allows a malicious application to gain root privileges on affected Apple devices. It affects macOS, iOS, iPadOS, and visionOS systems running vulnerable versions. Attackers could ex...

This CVE describes a sandbox escape vulnerability in multiple Apple operating systems where an app can bypass its security restrictions. It affects users of watchOS, tvOS, macOS, iOS, iPadOS, and visi...

A path validation vulnerability in Apple operating systems allows malicious applications to gain root privileges through improper path handling. This affects iOS, iPadOS, macOS, and visionOS users run...

A race condition vulnerability in Apple operating systems allows malicious applications to potentially gain root privileges. This affects users running vulnerable versions of iOS, iPadOS, macOS, watch...

This CVE describes an out-of-bounds read vulnerability in macOS kernel memory that could allow an attacker to cause system crashes or read sensitive kernel data. It affects macOS systems running vulne...

This vulnerability allows applications to bypass certain privacy preferences on Apple operating systems, potentially accessing sensitive user data without proper authorization. It affects macOS, iOS, ...

A macOS vulnerability allows malicious applications to gain root privileges through improper symlink handling. This affects macOS systems before version 26.3. Attackers could exploit this to execute a...

This CVE describes an out-of-bounds memory access vulnerability in Apple's media file processing across multiple operating systems. Attackers can craft malicious media files that cause application cra...

This CVE describes a path handling vulnerability in macOS that allows an application to gain root privileges through improper validation. It affects macOS Sequoia, Tahoe, and Sonoma versions before th...

A logic vulnerability in macOS allows remote attackers to cause denial-of-service conditions. This affects macOS Sequoia before 15.7.4 and macOS Sonoma before 14.8.4. The issue involves insufficient v...

This CVE describes a Gatekeeper bypass vulnerability in macOS that allows malicious applications to circumvent security checks. Attackers could potentially execute untrusted code without proper valida...

This CVE describes a sandbox escape vulnerability in macOS that allows malicious applications to bypass security restrictions. An attacker could execute code outside the intended sandbox environment, ...

A use-after-free vulnerability in Apple's WebKit browser engine allows processing malicious web content to execute arbitrary code. This affects multiple Apple operating systems and Safari browser vers...

A permissions vulnerability in macOS allows applications to gain root privileges through improper access restrictions. This affects macOS Tahoe and Sequoia versions before the patched releases. Attack...

A memory corruption vulnerability in Apple operating systems allows attackers to execute arbitrary code by processing a malicious file. This affects users running vulnerable versions of iOS, iPadOS, m...

A FaceTime remote control vulnerability allows password fields to be unintentionally revealed during screen sharing sessions. This affects users of Apple devices running vulnerable iOS, iPadOS, macOS,...

An integer overflow vulnerability in Apple operating systems could allow malicious applications to gain root privileges. This affects multiple Apple platforms including iOS, macOS, watchOS, tvOS, and ...

A privilege escalation vulnerability in Apple operating systems allows malicious applications to gain elevated privileges. This affects macOS, iOS, and iPadOS users running vulnerable versions. The is...

This CVE describes a memory corruption vulnerability in Apple operating systems that could allow a malicious application to cause system crashes or write to kernel memory. It affects multiple Apple pl...

A mail header parsing vulnerability in Apple operating systems allows attackers to cause persistent denial-of-service conditions. This affects users of iOS, iPadOS, macOS, watchOS, and visionOS who pr...

A logic error in macOS iCloud Private Relay prevents activation when multiple users are logged in simultaneously, potentially exposing network traffic. This affects macOS users with iCloud Private Rel...

This CVE describes a memory corruption vulnerability in Apple operating systems that could allow a malicious application to manipulate shared memory between processes. The issue affects multiple Apple...

This vulnerability in macOS allows malicious applications to escalate privileges and gain root access. It affects macOS systems running versions before Tahoe 26.1. Users who install untrusted applicat...

This macOS vulnerability allows malicious applications to bypass launch constraint protections and execute code with elevated privileges. It affects macOS systems running vulnerable versions, potentia...

This memory corruption vulnerability in macOS allows malicious applications to cause system crashes or corrupt process memory. It affects macOS systems running vulnerable versions, potentially enablin...

This vulnerability allows remote attackers to perform out-of-bounds memory access in ANGLE (Almost Native Graphics Layer Engine) in Google Chrome on macOS. Attackers can exploit this by tricking users...

A use-after-free vulnerability in Apple's WebKit browser engine allows memory corruption when processing malicious web content. This affects users of macOS, iOS, iPadOS, and Safari who visit compromis...

This vulnerability allows remote content to be loaded even when the 'Load Remote Images' setting is disabled in affected Apple operating systems. This bypasses user privacy controls and could lead to ...

A sandbox escape vulnerability in macOS allows malicious applications to bypass intended restrictions and access sensitive user data. This affects macOS Sequoia, Tahoe, and Sonoma versions before the ...

This vulnerability allows an application to escape its sandbox restrictions on affected Apple operating systems. It affects users running vulnerable versions of tvOS, macOS, iOS, iPadOS, and visionOS....

This vulnerability allows sandboxed applications on Apple operating systems to observe system-wide network connections, potentially exposing sensitive network traffic information. It affects multiple ...

This vulnerability allows malicious apps to bypass privacy protections and access sensitive user data that should be restricted. It affects iOS, iPadOS, and macOS users running vulnerable versions. Th...

This CVE describes a macOS/iOS/iPadOS vulnerability where sandboxed applications can bypass security restrictions to access sensitive user data. The issue affects multiple Apple operating system versi...

This CVE describes an authorization vulnerability in macOS where an app could bypass intended restrictions and access sensitive user data. The issue affects macOS systems before version 26.3 and was c...

A path validation vulnerability in macOS allows malicious applications to bypass directory restrictions and access sensitive user data. This affects macOS systems before version 26.3. Users running vu...

A logic flaw in Apple's mail preview functionality allows remote content to load despite the 'Load remote content in messages' setting being disabled. This affects users of macOS, iOS, and iPadOS who ...

This CVE describes an image processing vulnerability in Apple operating systems where improper bounds checks could allow maliciously crafted images to disclose user information. The vulnerability affe...

This vulnerability allows malicious websites to track users through Safari web extensions due to improper state management. It affects users of Apple's Safari browser across multiple Apple operating s...

A path validation vulnerability in Apple operating systems allows applications to access sensitive user data through improper directory path parsing. This affects macOS, iOS, iPadOS, and visionOS user...

This memory handling vulnerability in Apple operating systems allows an app to cause unexpected system termination (kernel panic/crash). All users running affected Apple operating systems before the p...

This macOS vulnerability allows an attacker with physical access to a locked device to bypass authorization controls and view sensitive user information. It affects macOS systems before specific secur...

This memory handling vulnerability in Apple's WebKit browser engine allows processing malicious web content to cause unexpected process crashes. It affects users of macOS, iOS, iPadOS, visionOS, and S...

This macOS vulnerability allows applications to access sensitive user data due to insufficient data protection. It affects macOS Tahoe versions before 26.3. Users running vulnerable macOS versions are...

This macOS vulnerability allows malicious applications to access notifications from other iCloud devices, potentially exposing sensitive information. It affects macOS systems before version 26.3. User...

This CVE describes an environment variable handling vulnerability in Apple operating systems that could allow malicious apps to access sensitive user data. The issue affects multiple Apple platforms i...

This macOS vulnerability allows applications to access sensitive user data through improper handling of temporary files. It affects macOS systems before version 26.3. The issue could expose personal i...

A permissions vulnerability in macOS allows applications to bypass intended restrictions and access protected user data. This affects macOS systems running versions before Tahoe 26.3. The issue requir...

This memory handling vulnerability in Apple's image processing components allows disclosure of process memory when processing malicious images. It affects multiple Apple operating systems including iO...

This CVE describes a memory handling vulnerability in Apple's WebKit browser engine that affects multiple Apple operating systems and Safari. Processing malicious web content could cause unexpected pr...

This memory handling vulnerability in Apple's WebKit browser engine allows processing malicious web content to cause unexpected process crashes. It affects users of iOS, iPadOS, Safari, macOS, and vis...

An out-of-bounds write vulnerability in USD file processing allows attackers to cause unexpected app termination or potentially execute arbitrary code by tricking users into opening malicious USD file...

This macOS vulnerability allows applications to access sensitive user data through improper handling of temporary files. It affects macOS systems before version 26.3. Users running vulnerable macOS ve...

This macOS vulnerability allows applications to access sensitive user data due to insufficient data redaction in logging. It affects macOS Sequoia before version 15.7.4 and macOS Tahoe before version ...

This CVE describes a memory corruption vulnerability in Apple operating systems that allows an app to cause system crashes or corrupt kernel memory. It affects multiple macOS, iOS, iPadOS, and visionO...

A permissions vulnerability in macOS allowed applications to access protected user data they shouldn't have been able to access. This affects macOS systems running versions before Tahoe 26.3. The issu...

This CVE describes an injection vulnerability in macOS that allows malicious applications to access sensitive user data. The issue affects macOS Sequoia, Tahoe, and Sonoma versions before the patched ...

A path validation vulnerability in macOS and visionOS allows applications to bypass directory restrictions and access sensitive user data. This affects users running vulnerable versions of macOS Sequo...

A cache handling vulnerability in macOS allows applications to cause denial-of-service conditions. This affects macOS Sequoia, Tahoe, and Sonoma operating systems before specific patch versions. Users...

A macOS vulnerability allows apps with root privileges to access private information due to insufficient redaction of sensitive data. This affects macOS systems before version 26.3. Users running vuln...

This memory handling vulnerability in Apple operating systems allows malicious applications to crash system processes. It affects macOS, iOS, and iPadOS users running vulnerable versions. The issue ha...

This CVE describes a memory management vulnerability in Apple's WebKit browser engine that could cause unexpected process crashes when processing malicious web content. It affects multiple Apple opera...

This memory handling vulnerability in Apple operating systems allows processing malicious files to cause denial-of-service or memory disclosure. It affects multiple Apple platforms including iOS, macO...

This macOS vulnerability allows applications to access sensitive contact information that should be redacted in system logs. It affects macOS users running versions before Tahoe 26.3, potentially expo...

A logic vulnerability in Apple operating systems allows attackers in privileged network positions to intercept network traffic. This affects multiple Apple platforms including iOS, macOS, watchOS, tvO...

A logic vulnerability in Apple's iOS, iPadOS, Safari, and macOS allows malicious applications to access a user's Safari browsing history without proper authorization. This affects users running outdat...

A macOS logging vulnerability allows malicious applications to access sensitive location information that should have been redacted. This affects macOS Tahoe versions before 26.3. The risk is limited ...

This CVE describes a permissions vulnerability in macOS that allows applications to monitor keystrokes without proper user authorization. It affects macOS systems running versions prior to Tahoe 26.3....

A macOS permissions vulnerability allows applications to access sensitive user data they shouldn't have permission to view. This affects macOS systems before Sequoia 15.1 where improper permission che...

A macOS, iOS, iPadOS, and watchOS vulnerability allows applications to access a user's Safari browsing history due to insufficient data redaction in logging. This affects users running vulnerable vers...

This CVE describes an information disclosure vulnerability in Apple operating systems where an app could identify what other apps a user has installed. It affects users of iOS, iPadOS, watchOS, macOS,...

This vulnerability involves memory corruption issues in Apple's operating systems that could allow a malicious HID (Human Interface Device) to cause unexpected process crashes. It affects multiple App...

This CVE describes a race condition vulnerability in Apple's web content processing that could allow an attacker to cause unexpected process crashes. It affects multiple Apple operating systems and Sa...