|
191
|
7.5
-
|
HIGH
Network
|
A null pointer dereference was addressed with improved input validation. This issue is fixed in macOS Sequoia 15.3, iOS 18.3 and iPadOS 18.3. A remote attacker may be able to cause a denial-of-servic…
|
CWE-476
NULL Pointer Dereference
|
CVE-2025-24177
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
18.3
|
2025-01-31 01:26
2025-01-28
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
192
|
5.5
-
|
MEDIUM
Local
|
The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4, macOS Sonoma 14.7.3, visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. Parsing a…
|
NVD-CWE-noinfo
|
CVE-2025-24161
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
18.3
|
2025-01-31 01:34
2025-01-28
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
193
|
8.8
-
|
HIGH
Network
|
A privacy issue was addressed with improved handling of files. This issue is fixed in macOS Sequoia 15.3, Safari 18.3, iOS 18.3 and iPadOS 18.3. Copying a URL from Web Inspector may lead to command i…
|
CWE-77
Command Injection
|
CVE-2025-24150
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
18.3
|
2025-01-31 03:10
2025-01-28
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194
|
3.3
-
|
LOW
Local
|
A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sequoia 15.3, iOS 18.3 and iPadOS 18.3. An app may be able to view a contact's phone n…
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2025-24145
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
18.3
|
2025-01-31 03:04
2025-01-28
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195
|
3.3
-
|
LOW
Local
|
An authentication issue was addressed with improved state management. This issue is fixed in iOS 18.3 and iPadOS 18.3. An attacker with physical access to an unlocked device may be able to access Pho…
|
NVD-CWE-noinfo
|
CVE-2025-24141
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
18.3
|
2025-01-31 03:03
2025-01-28
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196
|
6.5
-
|
MEDIUM
Network
|
The issue was addressed with improved memory handling. This issue is fixed in visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. An attacker in a privileged position…
|
NVD-CWE-noinfo
|
CVE-2025-24131
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
18.3
|
2025-01-31 02:58
2025-01-28
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197
|
7.5
-
|
HIGH
Network
|
A type confusion issue was addressed with improved checks. This issue is fixed in visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. A remote attacker may cause an u…
|
CWE-843
Type Confusion
|
CVE-2025-24129
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
18.3
|
2025-01-31 23:40
2025-01-28
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198
|
4.3
-
|
MEDIUM
Network
|
The issue was addressed by adding additional logic. This issue is fixed in macOS Sequoia 15.3, Safari 18.3, iOS 18.3 and iPadOS 18.3. Visiting a malicious website may lead to address bar spoofing.
|
NVD-CWE-noinfo
|
CVE-2025-24128
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
18.3
|
2025-01-31 23:41
2025-01-28
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199
|
5.5
-
|
MEDIUM
Local
|
The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4, macOS Ventura 13.7.3, macOS Sonoma 14.7.3, visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, tvOS 18.3. P…
|
NVD-CWE-noinfo
|
CVE-2025-24127
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
18.3
|
2025-01-31 23:42
2025-01-28
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200
|
5.5
-
|
MEDIUM
Local
|
This issue was addressed with improved redaction of sensitive information. This issue is fixed in iPadOS 17.7.4, visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3. An app may b…
|
CWE-922
Insecure Storage of Sensitive Information
|
CVE-2025-24117
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
18.3
|
2025-01-31 23:40
2025-01-28
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|