- 22/2025
- Critical
Apple has released security updates to address multiple vulnerabilities across macOS Sequoia, Sonoma, Ventura, and Safari.
The addressed vulnerabilities could allow the attacker to bypass security restrictions, conduct spoofing attacks, obtain sensitive information, perform denial of services attacks, gain elevated privileges, or execute arbitrary code and gain access to the affected systems.
Sample of the addressed vulnerabilities:
1. Apple macOS Sequoia, Sonoma, Ventura Information Disclosure Vulnerability (CVE-2025-24102):
- CVSS: 9.8
- Attack Vector: Network
- Attack Complexity: Low
- Privileges Required: None
- User Interaction: None
- Consequences: Obtain Information
2. Apple macOS Sequoia, Sonoma, Ventura Unexpected App Termination Vulnerability (CVE-2025-24106):
- CVSS: 9.8
- Attack Vector: Network
- Attack Complexity: Low
- Privileges Required: None
- User Interaction: None
- Consequences: Denial of Service
It should be highlighted that Apple is aware that the zero-day vulnerability “CVE-2025-24085” is being exploited in the wild.
Vulnerabilities
Mitigations
The enterprise should deploy this patch as soon as the testing phase is completed.