macOS 15.6

[Apple SQLite] Processing a file may lead to memory corruption

[Apple libxml2] Processing a file may lead to memory corruption

[Apple libxslt] Processing maliciously crafted web content may lead to memory corruption

[Apple CoreMedia] A sandboxed process may be able to circumvent sandbox restrictions

[Apple CoreAudio] Processing a maliciously crafted audio file may lead to memory corruption

[Apple Safari] Processing maliciously crafted web content may lead to an unexpected Safari crash

[Apple AppleMobileFileIntegrity] An app may be able to gain root privileges

[Apple WebKit] Processing maliciously crafted web content may lead to memory corruption

[Apple MediaRemote] A sandboxed process may be able to launch any installed app

[Apple WebKit] Processing maliciously crafted web content may lead to memory corruption

[Apple Find My] An app may be able to fingerprint the user

[Apple Model I/O] Processing a maliciously crafted file may lead to heap corruption

[Apple Model I/O] Processing a maliciously crafted file may lead to unexpected app termination

[Apple Voice Control] An app may be able to access protected user data

[Apple afclip] Parsing a file may lead to an unexpected app termination

[Apple Disk Images] Running an hdiutil command may unexpectedly execute arbitrary code

[Apple DiskArbitration] A malicious app may be able to gain root privileges

[Apple WebContentFilter] A malicious app may be able to read kernel memory

[Apple Admin Framework] An app may be able to cause a denial-of-service

[Apple Managed Configuration] Account-driven User Enrollment may still be possible with Lockdown Mode turned on

[Apple SecurityAgent] An app may be able to cause a denial-of-service

[Apple PackageKit] An app may be able to modify protected parts of the file system

[Apple CoreServices] An app may be able to access sensitive user data

[Apple libxpc] An app may be able to gain root privileges

[Apple Single Sign-On] An app may be able to access sensitive user data

[Apple Dock] An app may be able to access protected user data

[Apple Core Services] A malicious app may be able to gain root privileges

[Apple libnetcore] Processing a file may lead to memory corruption

[Apple System Settings] An app may be able to access protected user data

[Apple ICU] Processing maliciously crafted web content may lead to an unexpected Safari crash

[Apple CoreMedia] Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process…

[Apple WebKit] Processing web content may lead to a denial-of-service

[Apple WebKit] Processing maliciously crafted web content may lead to an unexpected Safari crash

[Apple WebKit] Processing maliciously crafted web content may lead to an unexpected Safari crash

[Apple WebKit] Processing maliciously crafted web content may lead to an unexpected Safari crash

[Apple Model I/O] Processing a maliciously crafted image may result in disclosure of process memory

[Apple WebKit] Processing maliciously crafted web content may lead to an unexpected Safari crash

[Apple Model I/O] Processing a maliciously crafted USD file may disclose memory contents

[Apple Model I/O] Processing a maliciously crafted image may corrupt process memory

[Apple copyfile] An app may be able to access protected user data

[Apple Model I/O] Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process…

[Apple CFNetwork] An attacker may be able to cause unexpected app termination

[Apple CFNetwork] A non-privileged user may be able to modify restricted network settings

[Apple Model I/O] Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process…

[Apple Notes] An app may be able to access sensitive user data

[Apple ImageIO] Processing a maliciously crafted image may result in disclosure of process memory

[Apple WebKit] Processing maliciously crafted web content may disclose sensitive user information

[Apple WebKit] Processing maliciously crafted web content may lead to universal cross site scripting

[Apple CoreMedia Playback] An app may be able to access user-sensitive data

[Apple PackageKit] An app may be able to bypass certain Privacy preferences

[Apple Security] A malicious app acting as a HTTPS proxy could get access to sensitive user data

[Apple Metal] Processing a maliciously crafted texture may lead to unexpected app termination

[Apple Power Management] An app may be able to cause a denial-of-service

[Apple Power Management] An attacker may be able to cause unexpected app termination

[Apple WebContentFilter] An app may be able to cause unexpected system termination

[Apple Xsan] An app may be able to cause unexpected system termination

[Apple sips] Processing a maliciously crafted file may lead to unexpected app termination

[Apple WebKit] A download's origin may be incorrectly associated

[Apple SceneKit] An app may be able to read files outside of its sandbox

[Apple Software Update] An app may be able to modify protected parts of the file system

[Apple AMD] An app may be able to cause unexpected system termination

[Apple AppleMobileFileIntegrity] An app may be able to access protected user data

[Apple Spotlight] An app may be able to access sensitive user data

[Apple PackageKit] A malicious app with root privileges may be able to modify the contents of system files

[Apple AppleMobileFileIntegrity] A malicious app may be able to gain root privileges

[Apple AppleMobileFileIntegrity] An app may be able to gain root privileges

[Apple SharedFileList] An app may be able to break out of its sandbox

[Apple User Management] A local attacker may gain access to Keychain items

[Apple zip] A website may be able to access sensitive user data when resolving symlinks

[Apple AppleMobileFileIntegrity] A malicious app may be able to launch arbitrary binaries on a trusted device

[Apple file] Processing a maliciously crafted file may lead to unexpected app termination

[Apple GPU Drivers] An app may be able to cause unexpected system termination

[Apple StorageKit] An app may be able to gain root privileges

[Apple Archive Utility] An app may be able to break out of its sandbox

[Apple WindowServer] An attacker with physical access to a locked device may be able to view sensitive user information

[Apple PackageKit] An app may be able to hijack entitlements granted to other privileged apps

[Apple File Bookmark] An app may be able to break out of its sandbox

[Apple Model I/O] Processing a maliciously crafted image may corrupt process memory

[Apple WebKit] Processing maliciously crafted web content may disclose internal states of the app

[Apple NSSpellChecker] An app may be able to break out of its sandbox

[Apple Directory Utility] An app may be able to access sensitive user data

[Apple Kernel] A malicious app may be able to gain root privileges

[Apple Notes] An app may gain unauthorized access to Local Network

[Apple RemoteViewServices] A sandboxed process may be able to circumvent sandbox restrictions

[Apple NetAuth] An app may be able to break out of its sandbox

[Apple Kernel] iCloud Private Relay may not activate when more than one user is logged in at the same time

[Apple Application Firewall] A local attacker may be able to elevate their privileges

[Apple Kernel] An app may be able to cause unexpected system termination

[Apple GPU Drivers] An app may be able to cause unexpected system termination

[Apple CoreServices] An app may be able to access sensitive user data