macOS
macOS 14.8.3
Official advisory21 CVEs fixed by this release.
- Release date
- 2025-12-12
- End of support
- —
- CVEs fixed
- 21
- CISA KEV
- 0
- Critical
- 0
- High
- 0
- NVD pending
- 18
CVEs fixed
| CVE | Severity | KEV | Published | Description |
|---|---|---|---|---|
|
CVE-2024-7264
[Apple curl] Multiple issues in curl |
MEDIUM 6.5 | — | [Apple curl] Multiple issues in curl | |
|
CVE-2025-9086
[Apple curl] Multiple issues in curl |
MEDIUM 4.3 | — | [Apple curl] Multiple issues in curl | |
|
CVE-2025-5918
[Apple libarchive] Processing a file may lead to memory corruption |
LOW 3.9 | — | [Apple libarchive] Processing a file may lead to memory corruption | |
|
CVE-2025-43416
[Apple sudo] An app may be able to access protected user data |
N/A | — | [Apple sudo] An app may be able to access protected user data | |
|
CVE-2025-43463
[Apple StorageKit] An app may be able to access sensitive user data |
N/A | — | [Apple StorageKit] An app may be able to access sensitive user data | |
|
CVE-2025-43482
[Apple Audio] An app may be able to cause a denial-of-service |
N/A | — | [Apple Audio] An app may be able to cause a denial-of-service | |
|
CVE-2025-43509
[Apple Networking] An app may be able to access sensitive user data |
N/A | — | [Apple Networking] An app may be able to access sensitive user data | |
|
CVE-2025-43512
[Apple Kernel] An app may be able to elevate privileges |
N/A | — | [Apple Kernel] An app may be able to elevate privileges | |
|
CVE-2025-43513
[Apple MDM Configuration Tools] An app may be able to read sensitive location information |
N/A | — | [Apple MDM Configuration Tools] An app may be able to read sensitive location information | |
|
CVE-2025-43516
[Apple Voice Control] A user with Voice Control enabled may be able to transcribe another user's activity |
N/A | — | [Apple Voice Control] A user with Voice Control enabled may be able to transcribe another user's activity | |
|
CVE-2025-43517
[Apple Call History] An app may be able to access protected user data |
N/A | — | [Apple Call History] An app may be able to access protected user data | |
|
CVE-2025-43518
[Apple Foundation] An app may be able to inappropriately access files through the spellcheck API |
N/A | — | [Apple Foundation] An app may be able to inappropriately access files through the spellcheck API | |
|
CVE-2025-43519
[Apple AppleMobileFileIntegrity] An app may be able to access sensitive user data |
N/A | — | [Apple AppleMobileFileIntegrity] An app may be able to access sensitive user data | |
|
CVE-2025-43530
[Apple VoiceOver] An app may be able to access sensitive user data |
N/A | — | [Apple VoiceOver] An app may be able to access sensitive user data | |
|
CVE-2025-43532
[Apple Foundation] Processing malicious data may lead to unexpected app termination |
N/A | — | [Apple Foundation] Processing malicious data may lead to unexpected app termination | |
|
CVE-2025-43538
[Apple Screen Time] An app may be able to access sensitive user data |
N/A | — | [Apple Screen Time] An app may be able to access sensitive user data | |
|
CVE-2025-43539
[Apple AppleJPEG] Processing a file may lead to memory corruption |
N/A | — | [Apple AppleJPEG] Processing a file may lead to memory corruption | |
|
CVE-2025-46276
[Apple Messages] An app may be able to access sensitive user data |
N/A | — | [Apple Messages] An app may be able to access sensitive user data | |
|
CVE-2025-46285
[Apple Kernel] An app may be able to gain root privileges |
N/A | — | [Apple Kernel] An app may be able to gain root privileges | |
|
CVE-2025-46287
[Apple Call History] An attacker may be able to spoof their FaceTime caller ID |
N/A | — | [Apple Call History] An attacker may be able to spoof their FaceTime caller ID | |
|
CVE-2025-46289
[Apple AppSandbox] An app may be able to access protected user data |
N/A | — | [Apple AppSandbox] An app may be able to access protected user data |