Apple Security Vulnerabilities (CVEs)

This memory corruption vulnerability in macOS allows malicious applications to cause system crashes or corrupt process memory. It affects macOS system...

A sandbox escape vulnerability in macOS allows malicious applications to bypass intended restrictions and access sensitive user data. This affects mac...

This vulnerability allows remote attackers to perform out-of-bounds memory access in ANGLE (Almost Native Graphics Layer Engine) in Google Chrome on m...

A path validation vulnerability in macOS allows applications to bypass directory restrictions and access sensitive user data. This affects macOS Ventu...

This vulnerability allows an attacker in physical proximity to cause an out-of-bounds read in kernel memory on Apple devices. It affects multiple Appl...

CVE-2025-43515 is a critical vulnerability in Apple Compressor where unauthenticated attackers on the same network can execute arbitrary code on Compr...

This CVE describes an out-of-bounds memory access vulnerability in Apple operating systems that could allow an app to bypass Address Space Layout Rand...

A use-after-free vulnerability in Apple's WebKit browser engine allows memory corruption when processing malicious web content. This affects users of ...

This CVE describes a privacy vulnerability in Apple operating systems where applications could bypass user preference controls to access sensitive use...

This CVE describes a privacy bypass vulnerability in Apple operating systems where applications can circumvent certain privacy preferences, potentiall...

This CVE describes a user interface spoofing vulnerability in Apple operating systems and Safari browser. Visiting a malicious website could allow att...

A buffer overflow vulnerability in Xcode allows attackers in privileged network positions to cause denial-of-service conditions. This affects develope...

CVE-2025-43505 is an out-of-bounds write vulnerability in Xcode that could allow heap corruption when processing malicious files. This affects develop...

This CVE describes a privacy vulnerability in Apple operating systems where applications could fingerprint users by accessing sensitive data. The issu...

This macOS vulnerability allows malicious applications to escape their security sandbox, potentially accessing system resources or other applications'...

This CVE describes an address bar spoofing vulnerability in Apple web browsers. Visiting a malicious website could allow attackers to display a fake U...

This vulnerability allows malicious iOS/iPadOS apps to monitor keystrokes without user permission, potentially capturing sensitive input like password...

This vulnerability allows remote content to be loaded even when the 'Load Remote Images' setting is disabled in affected Apple operating systems. This...

This CVE describes an authorization vulnerability in Apple operating systems where improper state management could allow an application to access sens...

This vulnerability allows malicious apps to bypass entitlement checks and access sensitive user data on Apple devices. It affects iOS, iPadOS, and mac...

A sandbox escape vulnerability in macOS allows malicious applications to bypass intended restrictions and access sensitive user data. This affects mac...

This vulnerability allows an application to escape its sandbox restrictions on affected Apple operating systems. It affects users running vulnerable v...

This vulnerability allows attackers with physical access to a locked macOS device to access contacts from the lock screen. It affects macOS users runn...

A sandbox escape vulnerability in macOS allows malicious applications to bypass intended restrictions and access sensitive user data. This affects mac...

This CVE describes an information disclosure vulnerability in macOS where applications could access sensitive user data due to insufficient entitlemen...

A sandbox escape vulnerability in macOS allows malicious applications to bypass file quarantine restrictions and potentially access system resources o...

This vulnerability allows sandboxed applications on Apple operating systems to observe system-wide network connections, potentially exposing sensitive...

This CVE describes a permissions bypass vulnerability in macOS Shortcuts that allows shortcuts to access files normally restricted from the Shortcuts ...

This vulnerability allows malicious websites to bypass same-origin policy protections and exfiltrate image data from other websites. It affects users ...

A symlink handling vulnerability in macOS allows applications to bypass file system protections and access sensitive user data. This affects macOS Seq...

This macOS vulnerability allows malicious applications to bypass symlink protections and access protected user data. It affects macOS systems before s...

A sandbox escape vulnerability in macOS allows sandboxed applications to bypass security restrictions and access sensitive user data. This affects mac...

A permissions issue in macOS allows applications to cause denial-of-service conditions. This affects macOS Sequoia, Tahoe, and Sonoma systems before s...

This memory handling vulnerability in Apple operating systems allows applications to cause unexpected system termination (kernel panic/crash). All use...

This vulnerability allows malicious apps to bypass privacy protections and access sensitive user data that should be restricted. It affects iOS, iPadO...

This CVE describes a denial-of-service vulnerability in macOS that was addressed through improved input validation. Remote attackers could potentially...

This CVE describes a symlink validation vulnerability in Apple operating systems that could allow malicious apps to bypass file system protections and...

This CVE describes an out-of-bounds write vulnerability in macOS file parsing that could allow an attacker to cause unexpected application termination...

A path validation vulnerability in macOS allows applications to bypass directory restrictions and access sensitive user data. This affects macOS Sequo...

This CVE describes an out-of-bounds memory access vulnerability in Apple's media file processing. Attackers can craft malicious media files that cause...

This CVE describes an out-of-bounds memory access vulnerability in Apple's media file processing. Attackers can craft malicious media files that cause...

This CVE describes an out-of-bounds memory access vulnerability in Apple's media file processing components. Attackers can craft malicious media files...

An out-of-bounds memory access vulnerability in Apple's media file processing allows malicious media files to cause application crashes or memory corr...

A permissions vulnerability in macOS allows malicious applications to escalate privileges to root access. This affects macOS systems running versions ...

This CVE describes a privacy vulnerability in Apple operating systems where an application could access sensitive user data without proper authorizati...

A code-signing downgrade vulnerability in Intel-based Mac computers allows malicious apps to bypass security restrictions and access sensitive user da...

This CVE describes a privacy vulnerability in Apple operating systems where applications could access sensitive user data through improper handling of...

An unprivileged process can terminate root processes on iOS and iPadOS devices due to improper input validation, causing denial-of-service. This affec...

This CVE describes a memory corruption vulnerability in macOS kernel that could allow a malicious application to cause system crashes or corrupt kerne...

This vulnerability allows remote attackers to view leaked DNS queries when Apple's Private Relay feature is enabled. It affects users of Safari, iOS, ...