Noah Gregory

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 18.7.5 iPadOS versions prior to 18.7.5 macOS Sonoma versions prior to 14.8.4 macOS Sequoia versions prior to 15.7.4 macOS Tahoe versions prior to 26.3 tvOS versions prior to 26.3 watchOS versions prior to 26.3 visionOS versions prior to 26.3 **Description** An application may be able to bypass its intended security restrictions, potentially allowing it to access data or functionality outside of its designated environment. This is due to a permissions issue that has been addressed through the implementation of additional restrictions. **Recommendations** Update iOS to version 18.7.5. Update iPadOS to version 18.7.5. Update macOS Sonoma to version 14.8.4. Update macOS Sequoia to version 15.7.4. Update macOS Tahoe to version 26.3. Update tvOS to version 26.3. Update watchOS to version 26.3. Update visionOS to version 26.3.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to Sonoma 14.8.3 macOS versions prior to Sequoia 15.7.3 **Description** A logic issue existed due to insufficient checks, potentially allowing an application to inappropriately access files through the spellcheck API. **Recommendations** Update to macOS Sonoma version 14.8.3 or later. Update to macOS Sequoia version 15.7.3 or later.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to Sonoma 14.8 iOS versions prior to 26 iPadOS versions prior to 26 visionOS versions prior to 26 macOS versions prior to Sequoia 15.7 watchOS versions prior to 26 **Description** An issue exists in the handling of directory paths due to insufficient path validation. This could allow an application to access sensitive user data. **Recommendations** Update macOS to version 14.8 or later. Update iOS to version 26 or later. Update iPadOS to version 26 or later. Update visionOS to version 26 or later. Update macOS to version 15.7 or later. Update watchOS to version 26 or later.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 15.6 macOS versions prior to 14.7.7 macOS versions prior to 13.7.7 **Description** A permissions issue was addressed with additional restrictions. An app may be able to break out of its sandbox. **Recommendations** Update to macOS version 15.6 or later. Update to macOS version 14.7.7 or later. Update to macOS version 13.7.7 or later.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to Sequoia 15.6 macOS versions prior to Sonoma 14.7.7 **Description** A malicious application may be able to launch arbitrary binaries on a trusted device due to inadequate input validation. **Recommendations** Update to macOS Sequoia 15.6 or later. Update to macOS Sonoma 14.7.7 or later.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 15.5 **Description** An information disclosure issue was addressed with improved privacy controls. This issue may allow an app to access sensitive user data. **Recommendations** For versions prior to 15.5, update to macOS Sequoia 15.5 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** iPadOS versions prior to 17.7.7 iOS versions prior to 18.5 iPadOS versions prior to 18.5 **Description** The issue allows an attacker with physical access to a device to access notes from the lock screen. This was addressed with improved authentication. **Recommendations** For iPadOS versions prior to 17.7.7, update to iPadOS 17.7.7 to resolve the issue. For iOS versions prior to 18.5, update to iOS 18.5 to resolve the issue. For iPadOS versions prior to 18.5, update to iPadOS 18.5 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** macOS versions 13.7.1 through 15.1 **Description** This issue was addressed with additional entitlement checks. A malicious application may be able to leak a user's credentials. **Recommendations** Update to macOS version 13.7.1. Update to macOS version 14.7.1. Update to macOS version 15.1.