Pwnrin

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to Tahoe 26.3 **Description** An application possessing root privileges may be capable of accessing private information due to insufficient redaction of sensitive data. **Recommendations** Update to macOS Tahoe 26.3.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to Tahoe 26.3 **Description** An application may be capable of accessing sensitive user data due to insufficient data protection mechanisms. **Recommendations** Update to macOS Tahoe 26.3.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 26.2 iOS versions prior to 26.2 iPadOS versions prior to 26.2 watchOS versions prior to 26.2 **Description** A logging issue existed that allowed an application to potentially access a user’s Safari history. The issue was addressed with improved data redaction. **Recommendations** Update macOS to version 26.2. Update iOS to version 26.2. Update iPadOS to version 26.2. Update watchOS to version 26.2.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 26.1 iPadOS versions prior to 26.1 **Description** A flaw exists due to insufficient data redaction in logging mechanisms. This could allow an application to access sensitive user data. **Recommendations** Update to iOS version 26.1. Update to iPadOS version 26.1.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 18.7.2 iPadOS versions prior to 18.7.2 **Description** An application may be able to access protected user data due to insufficient redaction of sensitive information. **Recommendations** Update to iOS version 18.7.2 or later. Update to iPadOS version 18.7.2 or later.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 15.7.2 **Description** A permissions issue existed due to insufficient sandbox restrictions, potentially allowing an application to access sensitive user data. **Recommendations** Update to macOS version 15.7.2 to address the issue.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 18.7.2 iPadOS versions prior to 18.7.2 **Description** An issue existed where an application could potentially access sensitive user data. The problematic code has been removed to address this privacy concern. **Recommendations** Update to iOS version 18.7.2. Update to iPadOS version 18.7.2.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 14.8.2 macOS versions prior to 15.7.2 **Description** An issue existed where an application could potentially access sensitive user data due to insufficient redaction of private data in log entries. **Recommendations** Update to macOS version 14.8.2 or later. Update to macOS version 15.7.2 or later.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to Tahoe 26 **Description** A flaw allows an application to potentially access protected user data due to a downgrade issue. This issue was addressed with additional code-signing restrictions. **Recommendations** Update to macOS Tahoe 26.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to Tahoe 26 **Description** A permissions issue allowed an app to read sensitive location information. This issue was addressed with additional restrictions. **Recommendations** Update to macOS Tahoe 26.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to Tahoe 26 **Description** A privacy issue was addressed with improved private data redaction for log entries. An application may be able to access user-sensitive data. **Recommendations** Update to macOS Tahoe 26 or later.

**Name of the Vulnerable Software and Affected Versions** iPadOS versions prior to 17.7.9 macOS Sequoia versions prior to 15.6 macOS Sonoma versions prior to 14.7.7 macOS Ventura versions prior to 13.7.7 **Description** A logging issue existed due to insufficient data redaction. This allowed an application to potentially access sensitive user data. **Recommendations** Update iPadOS to version 17.7.9. Update macOS Sequoia to version 15.6. Update macOS Sonoma to version 14.7.7. Update macOS Ventura to version 13.7.7.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 15.5 **Description** An information disclosure issue was addressed with improved privacy controls. This issue allows an app to potentially access sensitive user data. **Recommendations** For versions prior to 15.5, update to macOS Sequoia 15.5 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** macOS Ventura versions prior to 13.7.3 macOS Sequoia versions prior to 15.3 macOS Sonoma versions prior to 14.7.3 **Description** The issue is related to the exposure of user contact information in system logging when a conversation is deleted in Messages. This is due to inadequate redaction of sensitive information. The problem may allow a remote attacker to disclose protected information due to inconsistency. **Recommendations** For macOS Ventura versions prior to 13.7.3, update to version 13.7.3 to resolve the issue. For macOS Sequoia versions prior to 15.3, update to version 15.3 to resolve the issue. For macOS Sonoma versions prior to 14.7.3, update to version 14.7.3 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** macOS Sonoma versions prior to 14.7.2 macOS Sequoia versions prior to 15.2 macOS Ventura versions prior to 13.7.2 **Description** A privacy issue was addressed with improved private data redaction for log entries. This issue may allow an app to determine a user’s current location. The vulnerability is related to the disclosure of password values in log files, which could allow an attacker to gain unauthorized access to protected information. **Recommendations** For macOS Sonoma versions prior to 14.7.2, update to version 14.7.2 to resolve the issue. For macOS Sequoia versions prior to 15.2, update to version 15.2 to resolve the issue. For macOS Ventura versions prior to 13.7.2, update to version 13.7.2 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 14.7.2 macOS versions prior to 15.2 **Description** The issue is related to insufficient protection of service data in the Find My component of MacOs, which may allow an attacker to disclose protected information. An app may be able to read sensitive location information. The issue was resolved by sanitizing logging. **Recommendations** For versions prior to 14.7.2, update to macOS Sonoma 14.7.2 to resolve the issue. For versions prior to 15.2, update to macOS Sequoia 15.2 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 15.2 **Description** The issue is related to insufficient protection of sensitive data, which may allow an unauthorized party to access protected information. An app may be able to access user-sensitive data due to this issue. The problem was addressed with improved redaction of sensitive information. **Recommendations** For versions prior to 15.2, update to macOS Sequoia 15.2 to resolve the issue. As a temporary workaround, consider restricting access to sensitive user data until the update is applied.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 15 **Description** A privacy issue allowed an app to potentially read sensitive location information due to inadequate private data redaction for log entries. **Recommendations** For versions prior to 15, update to macOS Sequoia 15 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 18 iPadOS versions prior to 18 watchOS versions prior to 11 tvOS versions prior to 18 macOS Sequoia versions prior to 15 **Description** A logic issue was addressed with improved checks. A malicious app may be able to modify other apps without having App Management permission. **Recommendations** For iOS versions prior to 18, update to iOS 18 or later. For iPadOS versions prior to 18, update to iPadOS 18 or later. For watchOS versions prior to 11, update to watchOS 11 or later. For tvOS versions prior to 18, update to tvOS 18 or later. For macOS Sequoia versions prior to 15, update to macOS Sequoia 15 or later.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 15 **Description** The issue allows an app to potentially access user-sensitive data due to inadequate redaction of sensitive information. **Recommendations** For versions prior to 15, update to macOS Sequoia 15 to resolve the issue.