Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2025-30466 (GCVE-0-2025-30466)
Vulnerability from cvelistv5 – Published: 2025-05-29 21:34 – Updated: 2025-05-30 22:02
VLAI?
EPSS
Summary
This issue was addressed through improved state management. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, visionOS 2.4, macOS Sequoia 15.4. A website may be able to bypass Same Origin Policy.
Severity ?
9.8 (Critical)
CWE
- A website may be able to bypass Same Origin Policy
Assigner
References
Impacted products
{
"containers": {
"adp": [
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2025-30466",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-05-30T14:42:03.112077Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-346",
"description": "CWE-346 Origin Validation Error",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-05-30T22:02:25.722Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "iOS and iPadOS",
"vendor": "Apple",
"versions": [
{
"lessThan": "18.4",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "macOS",
"vendor": "Apple",
"versions": [
{
"lessThan": "15.4",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "visionOS",
"vendor": "Apple",
"versions": [
{
"lessThan": "2.4",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "Safari",
"vendor": "Apple",
"versions": [
{
"lessThan": "18.4",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "This issue was addressed through improved state management. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, visionOS 2.4, macOS Sequoia 15.4. A website may be able to bypass Same Origin Policy."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "A website may be able to bypass Same Origin Policy",
"lang": "en"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-05-29T21:34:27.244Z",
"orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
"shortName": "apple"
},
"references": [
{
"url": "https://support.apple.com/en-us/122371"
},
{
"url": "https://support.apple.com/en-us/122373"
},
{
"url": "https://support.apple.com/en-us/122378"
},
{
"url": "https://support.apple.com/en-us/122379"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
"assignerShortName": "apple",
"cveId": "CVE-2025-30466",
"datePublished": "2025-05-29T21:34:27.244Z",
"dateReserved": "2025-03-22T00:04:43.722Z",
"dateUpdated": "2025-05-30T22:02:25.722Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2025-30466\",\"sourceIdentifier\":\"product-security@apple.com\",\"published\":\"2025-05-29T22:15:21.603\",\"lastModified\":\"2025-06-02T16:00:47.247\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"This issue was addressed through improved state management. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, visionOS 2.4, macOS Sequoia 15.4. A website may be able to bypass Same Origin Policy.\"},{\"lang\":\"es\",\"value\":\"Este problema se solucion\u00f3 mejorando la gesti\u00f3n del estado. Est\u00e1 corregido en Safari 18.4, iOS 18.4 y iPadOS 18.4, visionOS 2.4 y macOS Sequoia 15.4. Un sitio web podr\u00eda eludir la Pol\u00edtica del Mismo Origen.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-346\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"18.4\",\"matchCriteriaId\":\"45D15738-9AE3-4CB5-8755-A67F6E09EAC5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"18.4\",\"matchCriteriaId\":\"6B3450F7-7B4A-46CE-A6E0-BBE6569F2EBF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"18.4\",\"matchCriteriaId\":\"0D9C73F9-FEF4-4FC1-B83D-56566AD35990\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"15.4\",\"matchCriteriaId\":\"E3BD0A90-23F1-430A-8119-E14055F7E621\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.4\",\"matchCriteriaId\":\"E82603D7-A630-4B9B-9C51-880667F05EC7\"}]}]}],\"references\":[{\"url\":\"https://support.apple.com/en-us/122371\",\"source\":\"product-security@apple.com\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/en-us/122373\",\"source\":\"product-security@apple.com\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/en-us/122378\",\"source\":\"product-security@apple.com\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/en-us/122379\",\"source\":\"product-security@apple.com\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 9.8, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"CRITICAL\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-30466\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-05-30T14:42:03.112077Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-346\", \"description\": \"CWE-346 Origin Validation Error\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-05-30T14:42:06.620Z\"}}], \"cna\": {\"affected\": [{\"vendor\": \"Apple\", \"product\": \"iOS and iPadOS\", \"versions\": [{\"status\": \"affected\", \"version\": \"unspecified\", \"lessThan\": \"18.4\", \"versionType\": \"custom\"}]}, {\"vendor\": \"Apple\", \"product\": \"macOS\", \"versions\": [{\"status\": \"affected\", \"version\": \"unspecified\", \"lessThan\": \"15.4\", \"versionType\": \"custom\"}]}, {\"vendor\": \"Apple\", \"product\": \"visionOS\", \"versions\": [{\"status\": \"affected\", \"version\": \"unspecified\", \"lessThan\": \"2.4\", \"versionType\": \"custom\"}]}, {\"vendor\": \"Apple\", \"product\": \"Safari\", \"versions\": [{\"status\": \"affected\", \"version\": \"unspecified\", \"lessThan\": \"18.4\", \"versionType\": \"custom\"}]}], \"references\": [{\"url\": \"https://support.apple.com/en-us/122371\"}, {\"url\": \"https://support.apple.com/en-us/122373\"}, {\"url\": \"https://support.apple.com/en-us/122378\"}, {\"url\": \"https://support.apple.com/en-us/122379\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"This issue was addressed through improved state management. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, visionOS 2.4, macOS Sequoia 15.4. A website may be able to bypass Same Origin Policy.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"description\": \"A website may be able to bypass Same Origin Policy\"}]}], \"providerMetadata\": {\"orgId\": \"286789f9-fbc2-4510-9f9a-43facdede74c\", \"shortName\": \"apple\", \"dateUpdated\": \"2025-05-29T21:34:27.244Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2025-30466\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-05-30T22:02:25.722Z\", \"dateReserved\": \"2025-03-22T00:04:43.722Z\", \"assignerOrgId\": \"286789f9-fbc2-4510-9f9a-43facdede74c\", \"datePublished\": \"2025-05-29T21:34:27.244Z\", \"assignerShortName\": \"apple\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
FKIE_CVE-2025-30466
Vulnerability from fkie_nvd - Published: 2025-05-29 22:15 - Updated: 2025-06-02 16:00
Severity ?
Summary
This issue was addressed through improved state management. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, visionOS 2.4, macOS Sequoia 15.4. A website may be able to bypass Same Origin Policy.
References
| URL | Tags | ||
|---|---|---|---|
| product-security@apple.com | https://support.apple.com/en-us/122371 | Release Notes, Vendor Advisory | |
| product-security@apple.com | https://support.apple.com/en-us/122373 | Release Notes, Vendor Advisory | |
| product-security@apple.com | https://support.apple.com/en-us/122378 | Release Notes, Vendor Advisory | |
| product-security@apple.com | https://support.apple.com/en-us/122379 | Release Notes, Vendor Advisory |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*",
"matchCriteriaId": "45D15738-9AE3-4CB5-8755-A67F6E09EAC5",
"versionEndExcluding": "18.4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*",
"matchCriteriaId": "6B3450F7-7B4A-46CE-A6E0-BBE6569F2EBF",
"versionEndExcluding": "18.4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
"matchCriteriaId": "0D9C73F9-FEF4-4FC1-B83D-56566AD35990",
"versionEndExcluding": "18.4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E3BD0A90-23F1-430A-8119-E14055F7E621",
"versionEndExcluding": "15.4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E82603D7-A630-4B9B-9C51-880667F05EC7",
"versionEndExcluding": "2.4",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "This issue was addressed through improved state management. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, visionOS 2.4, macOS Sequoia 15.4. A website may be able to bypass Same Origin Policy."
},
{
"lang": "es",
"value": "Este problema se solucion\u00f3 mejorando la gesti\u00f3n del estado. Est\u00e1 corregido en Safari 18.4, iOS 18.4 y iPadOS 18.4, visionOS 2.4 y macOS Sequoia 15.4. Un sitio web podr\u00eda eludir la Pol\u00edtica del Mismo Origen."
}
],
"id": "CVE-2025-30466",
"lastModified": "2025-06-02T16:00:47.247",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
},
"published": "2025-05-29T22:15:21.603",
"references": [
{
"source": "product-security@apple.com",
"tags": [
"Release Notes",
"Vendor Advisory"
],
"url": "https://support.apple.com/en-us/122371"
},
{
"source": "product-security@apple.com",
"tags": [
"Release Notes",
"Vendor Advisory"
],
"url": "https://support.apple.com/en-us/122373"
},
{
"source": "product-security@apple.com",
"tags": [
"Release Notes",
"Vendor Advisory"
],
"url": "https://support.apple.com/en-us/122378"
},
{
"source": "product-security@apple.com",
"tags": [
"Release Notes",
"Vendor Advisory"
],
"url": "https://support.apple.com/en-us/122379"
}
],
"sourceIdentifier": "product-security@apple.com",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-346"
}
],
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
}
WID-SEC-W-2025-0663
Vulnerability from csaf_certbund - Published: 2025-03-31 22:00 - Updated: 2025-06-11 22:00Summary
Apple iOS und iPadOS: Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Das Apple iOS (vormals iPhone OS) ist das Betriebssystem für das von Apple entwickelte Smartphone iPhone, iPad und iPod Touch.
Das Apple iPadOS ist das Betriebssystem für das von Apple entwickelte iPad.
Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Apple iOS und Apple iPadOS ausnutzen, um vertrauliche Informationen preiszugeben, beliebigen Code auszuführen, einen Denial-of-Service-Zustand herbeizuführen, Sicherheitsmaßnahmen zu umgehen, erhöhte Rechte zu erlangen oder Daten zu manipulieren.
Betroffene Betriebssysteme: - MacOS X
References
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Das Apple iOS (vormals iPhone OS) ist das Betriebssystem f\u00fcr das von Apple entwickelte Smartphone iPhone, iPad und iPod Touch.\r\nDas Apple iPadOS ist das Betriebssystem f\u00fcr das von Apple entwickelte iPad.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Apple iOS und Apple iPadOS ausnutzen, um vertrauliche Informationen preiszugeben, beliebigen Code auszuf\u00fchren, einen Denial-of-Service-Zustand herbeizuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, erh\u00f6hte Rechte zu erlangen oder Daten zu manipulieren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- MacOS X",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2025-0663 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0663.json"
},
{
"category": "self",
"summary": "WID-SEC-2025-0663 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0663"
},
{
"category": "external",
"summary": "About the security content of iOS 18.4 and iPadOS 18.4 vom 2025-03-31",
"url": "https://support.apple.com/en-us/122371"
},
{
"category": "external",
"summary": "About the security content of iPadOS 17.7.6 vom 2025-03-31",
"url": "https://support.apple.com/en-us/122372"
},
{
"category": "external",
"summary": "KEV Catalog CVE-2025-24085 vom 2025-01-29",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?search_api_fulltext=CVE-2025-24085\u0026field_date_added_wrapper=all\u0026field_cve=\u0026sort_by=field_date_added\u0026items_per_page=20\u0026url"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20257-1 vom 2025-06-04",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021061.html"
}
],
"source_lang": "en-US",
"title": "Apple iOS und iPadOS: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-06-11T22:00:00.000+00:00",
"generator": {
"date": "2025-06-12T05:14:23.708+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.12"
}
},
"id": "WID-SEC-W-2025-0663",
"initial_release_date": "2025-03-31T22:00:00.000+00:00",
"revision_history": [
{
"date": "2025-03-31T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2025-04-28T22:00:00.000+00:00",
"number": "2",
"summary": "CVE\u0027s erg\u00e4nzt"
},
{
"date": "2025-05-04T22:00:00.000+00:00",
"number": "3",
"summary": "CVE\u0027s erg\u00e4nzt"
},
{
"date": "2025-06-03T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-06-11T22:00:00.000+00:00",
"number": "5",
"summary": "CVE-Nummern erg\u00e4nzt"
}
],
"status": "final",
"version": "5"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c18.4",
"product": {
"name": "Apple iOS \u003c18.4",
"product_id": "T042234"
}
},
{
"category": "product_version",
"name": "18.4",
"product": {
"name": "Apple iOS 18.4",
"product_id": "T042234-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:apple:iphone_os:18.4"
}
}
}
],
"category": "product_name",
"name": "iOS"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c18.4",
"product": {
"name": "Apple iPadOS \u003c18.4",
"product_id": "T042235"
}
},
{
"category": "product_version",
"name": "18.4",
"product": {
"name": "Apple iPadOS 18.4",
"product_id": "T042235-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:apple:ipados:18.4"
}
}
},
{
"category": "product_version_range",
"name": "\u003c17.7.6",
"product": {
"name": "Apple iPadOS \u003c17.7.6",
"product_id": "T042236"
}
},
{
"category": "product_version",
"name": "17.7.6",
"product": {
"name": "Apple iPadOS 17.7.6",
"product_id": "T042236-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:apple:ipados:17.7.6"
}
}
}
],
"category": "product_name",
"name": "iPadOS"
}
],
"category": "vendor",
"name": "Apple"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-48958",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2024-48958"
},
{
"cve": "CVE-2024-54502",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2024-54502"
},
{
"cve": "CVE-2024-54508",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2024-54508"
},
{
"cve": "CVE-2024-54534",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2024-54534"
},
{
"cve": "CVE-2024-54543",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2024-54543"
},
{
"cve": "CVE-2024-56171",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2024-56171"
},
{
"cve": "CVE-2024-9681",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2024-9681"
},
{
"cve": "CVE-2025-24085",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24085"
},
{
"cve": "CVE-2025-24095",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24095"
},
{
"cve": "CVE-2025-24097",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24097"
},
{
"cve": "CVE-2025-24113",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24113"
},
{
"cve": "CVE-2025-24163",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24163"
},
{
"cve": "CVE-2025-24167",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24167"
},
{
"cve": "CVE-2025-24173",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24173"
},
{
"cve": "CVE-2025-24178",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24178"
},
{
"cve": "CVE-2025-24180",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24180"
},
{
"cve": "CVE-2025-24182",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24182"
},
{
"cve": "CVE-2025-24190",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24190"
},
{
"cve": "CVE-2025-24192",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24192"
},
{
"cve": "CVE-2025-24193",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24193"
},
{
"cve": "CVE-2025-24194",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24194"
},
{
"cve": "CVE-2025-24198",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24198"
},
{
"cve": "CVE-2025-24202",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24202"
},
{
"cve": "CVE-2025-24203",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24203"
},
{
"cve": "CVE-2025-24205",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24205"
},
{
"cve": "CVE-2025-24206",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24206"
},
{
"cve": "CVE-2025-24208",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24208"
},
{
"cve": "CVE-2025-24209",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24209"
},
{
"cve": "CVE-2025-24210",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24210"
},
{
"cve": "CVE-2025-24211",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24211"
},
{
"cve": "CVE-2025-24212",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24212"
},
{
"cve": "CVE-2025-24213",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24213"
},
{
"cve": "CVE-2025-24214",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24214"
},
{
"cve": "CVE-2025-24215",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24215"
},
{
"cve": "CVE-2025-24216",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24216"
},
{
"cve": "CVE-2025-24217",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24217"
},
{
"cve": "CVE-2025-24221",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24221"
},
{
"cve": "CVE-2025-24230",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24230"
},
{
"cve": "CVE-2025-24237",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24237"
},
{
"cve": "CVE-2025-24238",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24238"
},
{
"cve": "CVE-2025-24243",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24243"
},
{
"cve": "CVE-2025-24244",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24244"
},
{
"cve": "CVE-2025-24251",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24251"
},
{
"cve": "CVE-2025-24252",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24252"
},
{
"cve": "CVE-2025-24257",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24257"
},
{
"cve": "CVE-2025-24264",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24264"
},
{
"cve": "CVE-2025-24270",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24270"
},
{
"cve": "CVE-2025-24271",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24271"
},
{
"cve": "CVE-2025-24283",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24283"
},
{
"cve": "CVE-2025-27113",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-27113"
},
{
"cve": "CVE-2025-30425",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30425"
},
{
"cve": "CVE-2025-30426",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30426"
},
{
"cve": "CVE-2025-30427",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30427"
},
{
"cve": "CVE-2025-30428",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30428"
},
{
"cve": "CVE-2025-30429",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30429"
},
{
"cve": "CVE-2025-30430",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30430"
},
{
"cve": "CVE-2025-30432",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30432"
},
{
"cve": "CVE-2025-30433",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30433"
},
{
"cve": "CVE-2025-30434",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30434"
},
{
"cve": "CVE-2025-30436",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30436"
},
{
"cve": "CVE-2025-30438",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30438"
},
{
"cve": "CVE-2025-30439",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30439"
},
{
"cve": "CVE-2025-30445",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30445"
},
{
"cve": "CVE-2025-30447",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30447"
},
{
"cve": "CVE-2025-30454",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30454"
},
{
"cve": "CVE-2025-30456",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30456"
},
{
"cve": "CVE-2025-30463",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30463"
},
{
"cve": "CVE-2025-30465",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30465"
},
{
"cve": "CVE-2025-30466",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30466"
},
{
"cve": "CVE-2025-30467",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30467"
},
{
"cve": "CVE-2025-30469",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30469"
},
{
"cve": "CVE-2025-30470",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30470"
},
{
"cve": "CVE-2025-30471",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30471"
},
{
"cve": "CVE-2025-31182",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-31182"
},
{
"cve": "CVE-2025-31183",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-31183"
},
{
"cve": "CVE-2025-31184",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-31184"
},
{
"cve": "CVE-2025-31191",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-31191"
},
{
"cve": "CVE-2025-31192",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-31192"
},
{
"cve": "CVE-2025-31197",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-31197"
},
{
"cve": "CVE-2025-31199",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-31199"
},
{
"cve": "CVE-2025-31202",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-31202"
},
{
"cve": "CVE-2025-31203",
"product_status": {
"known_affected": [
"T042234",
"T042235",
"T042236",
"T002207"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-31203"
}
]
}
WID-SEC-W-2025-0668
Vulnerability from csaf_certbund - Published: 2025-03-31 22:00 - Updated: 2025-11-12 23:00Summary
Apple macOS: Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Apple macOS ist ein Betriebssystem, das auf FreeBSD und Mach basiert.
Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Apple macOS ausnutzen, um erhöhte Rechte - sogar Root-Rechte - zu erlangen, um vertrauliche Informationen offenzulegen, um beliebigen Code auszuführen, um Daten zu manipulieren, um Sicherheitsmaßnahmen - sogar Sandbox-Einschränkungen - zu umgehen oder um einen Denial-of-Service-Zustand auszulösen.
Betroffene Betriebssysteme: - MacOS X
References
| URL | Category | ||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Apple macOS ist ein Betriebssystem, das auf FreeBSD und Mach basiert.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Apple macOS ausnutzen, um erh\u00f6hte Rechte - sogar Root-Rechte - zu erlangen, um vertrauliche Informationen offenzulegen, um beliebigen Code auszuf\u00fchren, um Daten zu manipulieren, um Sicherheitsma\u00dfnahmen - sogar Sandbox-Einschr\u00e4nkungen - zu umgehen oder um einen Denial-of-Service-Zustand auszul\u00f6sen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- MacOS X",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2025-0668 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0668.json"
},
{
"category": "self",
"summary": "WID-SEC-2025-0668 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0668"
},
{
"category": "external",
"summary": "About the security content of macOS Ventura 13.7.5 vom 2025-03-31",
"url": "https://support.apple.com/en-us/122375"
},
{
"category": "external",
"summary": "About the security content of macOS Sonoma 14.7.5 vom 2025-03-31",
"url": "https://support.apple.com/en-us/122374"
},
{
"category": "external",
"summary": "About the security content of macOS Sequoia 15.4 vom 2025-03-31",
"url": "https://support.apple.com/en-us/122373"
},
{
"category": "external",
"summary": "KEV Catalog CVE-2025-24085 vom 2025-01-29",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?search_api_fulltext=CVE-2025-24085\u0026field_date_added_wrapper=all\u0026field_cve=\u0026sort_by=field_date_added\u0026items_per_page=20\u0026url"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20257-1 vom 2025-06-04",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021061.html"
}
],
"source_lang": "en-US",
"title": "Apple macOS: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-11-12T23:00:00.000+00:00",
"generator": {
"date": "2025-11-13T10:22:27.122+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.4.0"
}
},
"id": "WID-SEC-W-2025-0668",
"initial_release_date": "2025-03-31T22:00:00.000+00:00",
"revision_history": [
{
"date": "2025-03-31T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2025-04-28T22:00:00.000+00:00",
"number": "2",
"summary": "CVE\u0027s erg\u00e4nzt"
},
{
"date": "2025-06-03T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-06-11T22:00:00.000+00:00",
"number": "4",
"summary": "CVE-Nummern erg\u00e4nzt"
},
{
"date": "2025-08-11T22:00:00.000+00:00",
"number": "5",
"summary": "CVE-2025-43205 erg\u00e4nzt"
},
{
"date": "2025-11-12T23:00:00.000+00:00",
"number": "6",
"summary": "Referenz(en) aufgenommen: EUVD-2025-106791"
}
],
"status": "final",
"version": "6"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "Ventura \u003c13.7.5",
"product": {
"name": "Apple macOS Ventura \u003c13.7.5",
"product_id": "T042238"
}
},
{
"category": "product_version",
"name": "Ventura 13.7.5",
"product": {
"name": "Apple macOS Ventura 13.7.5",
"product_id": "T042238-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:apple:mac_os:ventura__13.7.5"
}
}
},
{
"category": "product_version_range",
"name": "Sonoma \u003c14.7.5",
"product": {
"name": "Apple macOS Sonoma \u003c14.7.5",
"product_id": "T042239"
}
},
{
"category": "product_version",
"name": "Sonoma 14.7.5",
"product": {
"name": "Apple macOS Sonoma 14.7.5",
"product_id": "T042239-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:apple:mac_os:sonoma__14.7.5"
}
}
},
{
"category": "product_version_range",
"name": "Sequoia \u003c15.4",
"product": {
"name": "Apple macOS Sequoia \u003c15.4",
"product_id": "T042240"
}
},
{
"category": "product_version",
"name": "Sequoia 15.4",
"product": {
"name": "Apple macOS Sequoia 15.4",
"product_id": "T042240-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:apple:mac_os:sequoia__15.4"
}
}
}
],
"category": "product_name",
"name": "macOS"
}
],
"category": "vendor",
"name": "Apple"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-27043",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2023-27043"
},
{
"cve": "CVE-2024-40864",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2024-40864"
},
{
"cve": "CVE-2024-48958",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2024-48958"
},
{
"cve": "CVE-2024-54533",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2024-54533"
},
{
"cve": "CVE-2024-56171",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2024-56171"
},
{
"cve": "CVE-2024-9681",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2024-9681"
},
{
"cve": "CVE-2025-24085",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24085"
},
{
"cve": "CVE-2025-24093",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24093"
},
{
"cve": "CVE-2025-24097",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24097"
},
{
"cve": "CVE-2025-24113",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24113"
},
{
"cve": "CVE-2025-24139",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24139"
},
{
"cve": "CVE-2025-24148",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24148"
},
{
"cve": "CVE-2025-24157",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24157"
},
{
"cve": "CVE-2025-24163",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24163"
},
{
"cve": "CVE-2025-24164",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24164"
},
{
"cve": "CVE-2025-24167",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24167"
},
{
"cve": "CVE-2025-24170",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24170"
},
{
"cve": "CVE-2025-24172",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24172"
},
{
"cve": "CVE-2025-24173",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24173"
},
{
"cve": "CVE-2025-24178",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24178"
},
{
"cve": "CVE-2025-24180",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24180"
},
{
"cve": "CVE-2025-24181",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24181"
},
{
"cve": "CVE-2025-24182",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24182"
},
{
"cve": "CVE-2025-24190",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24190"
},
{
"cve": "CVE-2025-24191",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24191"
},
{
"cve": "CVE-2025-24192",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24192"
},
{
"cve": "CVE-2025-24194",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24194"
},
{
"cve": "CVE-2025-24195",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24195"
},
{
"cve": "CVE-2025-24196",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24196"
},
{
"cve": "CVE-2025-24198",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24198"
},
{
"cve": "CVE-2025-24199",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24199"
},
{
"cve": "CVE-2025-24202",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24202"
},
{
"cve": "CVE-2025-24203",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24203"
},
{
"cve": "CVE-2025-24204",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24204"
},
{
"cve": "CVE-2025-24205",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24205"
},
{
"cve": "CVE-2025-24207",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24207"
},
{
"cve": "CVE-2025-24209",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24209"
},
{
"cve": "CVE-2025-24210",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24210"
},
{
"cve": "CVE-2025-24211",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24211"
},
{
"cve": "CVE-2025-24212",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24212"
},
{
"cve": "CVE-2025-24213",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24213"
},
{
"cve": "CVE-2025-24214",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24214"
},
{
"cve": "CVE-2025-24215",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24215"
},
{
"cve": "CVE-2025-24216",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24216"
},
{
"cve": "CVE-2025-24217",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24217"
},
{
"cve": "CVE-2025-24218",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24218"
},
{
"cve": "CVE-2025-24228",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24228"
},
{
"cve": "CVE-2025-24229",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24229"
},
{
"cve": "CVE-2025-24230",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24230"
},
{
"cve": "CVE-2025-24231",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24231"
},
{
"cve": "CVE-2025-24232",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24232"
},
{
"cve": "CVE-2025-24233",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24233"
},
{
"cve": "CVE-2025-24234",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24234"
},
{
"cve": "CVE-2025-24235",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24235"
},
{
"cve": "CVE-2025-24236",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24236"
},
{
"cve": "CVE-2025-24237",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24237"
},
{
"cve": "CVE-2025-24238",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24238"
},
{
"cve": "CVE-2025-24239",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24239"
},
{
"cve": "CVE-2025-24240",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24240"
},
{
"cve": "CVE-2025-24241",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24241"
},
{
"cve": "CVE-2025-24242",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24242"
},
{
"cve": "CVE-2025-24243",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24243"
},
{
"cve": "CVE-2025-24244",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24244"
},
{
"cve": "CVE-2025-24245",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24245"
},
{
"cve": "CVE-2025-24246",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24246"
},
{
"cve": "CVE-2025-24247",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24247"
},
{
"cve": "CVE-2025-24248",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24248"
},
{
"cve": "CVE-2025-24249",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24249"
},
{
"cve": "CVE-2025-24250",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24250"
},
{
"cve": "CVE-2025-24251",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24251"
},
{
"cve": "CVE-2025-24253",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24253"
},
{
"cve": "CVE-2025-24254",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24254"
},
{
"cve": "CVE-2025-24255",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24255"
},
{
"cve": "CVE-2025-24256",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24256"
},
{
"cve": "CVE-2025-24257",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24257"
},
{
"cve": "CVE-2025-24259",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24259"
},
{
"cve": "CVE-2025-24260",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24260"
},
{
"cve": "CVE-2025-24261",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24261"
},
{
"cve": "CVE-2025-24262",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24262"
},
{
"cve": "CVE-2025-24263",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24263"
},
{
"cve": "CVE-2025-24264",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24264"
},
{
"cve": "CVE-2025-24265",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24265"
},
{
"cve": "CVE-2025-24266",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24266"
},
{
"cve": "CVE-2025-24267",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24267"
},
{
"cve": "CVE-2025-24269",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24269"
},
{
"cve": "CVE-2025-24270",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24270"
},
{
"cve": "CVE-2025-24272",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24272"
},
{
"cve": "CVE-2025-24273",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24273"
},
{
"cve": "CVE-2025-24276",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24276"
},
{
"cve": "CVE-2025-24277",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24277"
},
{
"cve": "CVE-2025-24278",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24278"
},
{
"cve": "CVE-2025-24279",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24279"
},
{
"cve": "CVE-2025-24280",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24280"
},
{
"cve": "CVE-2025-24281",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24281"
},
{
"cve": "CVE-2025-24282",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24282"
},
{
"cve": "CVE-2025-24283",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-24283"
},
{
"cve": "CVE-2025-27113",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-27113"
},
{
"cve": "CVE-2025-30424",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30424"
},
{
"cve": "CVE-2025-30425",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30425"
},
{
"cve": "CVE-2025-30426",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30426"
},
{
"cve": "CVE-2025-30427",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30427"
},
{
"cve": "CVE-2025-30429",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30429"
},
{
"cve": "CVE-2025-30430",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30430"
},
{
"cve": "CVE-2025-30432",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30432"
},
{
"cve": "CVE-2025-30433",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30433"
},
{
"cve": "CVE-2025-30435",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30435"
},
{
"cve": "CVE-2025-30437",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30437"
},
{
"cve": "CVE-2025-30438",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30438"
},
{
"cve": "CVE-2025-30439",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30439"
},
{
"cve": "CVE-2025-30443",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30443"
},
{
"cve": "CVE-2025-30444",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30444"
},
{
"cve": "CVE-2025-30445",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30445"
},
{
"cve": "CVE-2025-30446",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30446"
},
{
"cve": "CVE-2025-30447",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30447"
},
{
"cve": "CVE-2025-30449",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30449"
},
{
"cve": "CVE-2025-30450",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30450"
},
{
"cve": "CVE-2025-30451",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30451"
},
{
"cve": "CVE-2025-30452",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30452"
},
{
"cve": "CVE-2025-30454",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30454"
},
{
"cve": "CVE-2025-30455",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30455"
},
{
"cve": "CVE-2025-30456",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30456"
},
{
"cve": "CVE-2025-30457",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30457"
},
{
"cve": "CVE-2025-30458",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30458"
},
{
"cve": "CVE-2025-30460",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30460"
},
{
"cve": "CVE-2025-30461",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30461"
},
{
"cve": "CVE-2025-30462",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30462"
},
{
"cve": "CVE-2025-30463",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30463"
},
{
"cve": "CVE-2025-30464",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30464"
},
{
"cve": "CVE-2025-30465",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30465"
},
{
"cve": "CVE-2025-30466",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30466"
},
{
"cve": "CVE-2025-30467",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30467"
},
{
"cve": "CVE-2025-30470",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30470"
},
{
"cve": "CVE-2025-30471",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-30471"
},
{
"cve": "CVE-2025-31182",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-31182"
},
{
"cve": "CVE-2025-31183",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-31183"
},
{
"cve": "CVE-2025-31184",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-31184"
},
{
"cve": "CVE-2025-31187",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-31187"
},
{
"cve": "CVE-2025-31188",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-31188"
},
{
"cve": "CVE-2025-31189",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-31189"
},
{
"cve": "CVE-2025-31191",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-31191"
},
{
"cve": "CVE-2025-31192",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-31192"
},
{
"cve": "CVE-2025-31194",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-31194"
},
{
"cve": "CVE-2025-31195",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-31195"
},
{
"cve": "CVE-2025-31197",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-31197"
},
{
"cve": "CVE-2025-31198",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-31198"
},
{
"cve": "CVE-2025-31199",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-31199"
},
{
"cve": "CVE-2025-31202",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-31202"
},
{
"cve": "CVE-2025-31203",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-31203"
},
{
"cve": "CVE-2025-31231",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-31231"
},
{
"cve": "CVE-2025-31261",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-31261"
},
{
"cve": "CVE-2025-31263",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-31263"
},
{
"cve": "CVE-2025-31264",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-31264"
},
{
"cve": "CVE-2025-43205",
"product_status": {
"known_affected": [
"T002207",
"T042238",
"T042239",
"T042240"
]
},
"release_date": "2025-03-31T22:00:00.000+00:00",
"title": "CVE-2025-43205"
}
]
}
GHSA-M66R-FG5X-99CR
Vulnerability from github – Published: 2025-05-30 00:31 – Updated: 2025-05-31 00:30
VLAI?
Details
This issue was addressed through improved state management. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, visionOS 2.4, macOS Sequoia 15.4. A website may be able to bypass Same Origin Policy.
Severity ?
9.8 (Critical)
{
"affected": [],
"aliases": [
"CVE-2025-30466"
],
"database_specific": {
"cwe_ids": [
"CWE-346"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2025-05-29T22:15:21Z",
"severity": "CRITICAL"
},
"details": "This issue was addressed through improved state management. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, visionOS 2.4, macOS Sequoia 15.4. A website may be able to bypass Same Origin Policy.",
"id": "GHSA-m66r-fg5x-99cr",
"modified": "2025-05-31T00:30:27Z",
"published": "2025-05-30T00:31:13Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-30466"
},
{
"type": "WEB",
"url": "https://support.apple.com/en-us/122371"
},
{
"type": "WEB",
"url": "https://support.apple.com/en-us/122373"
},
{
"type": "WEB",
"url": "https://support.apple.com/en-us/122378"
},
{
"type": "WEB",
"url": "https://support.apple.com/en-us/122379"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…