Yo_Yo_Yo_Jbo

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 15.7.2 **Description** A permissions issue existed due to insufficient sandbox restrictions, potentially allowing an application to access sensitive user data. **Recommendations** Update to macOS version 15.7.2 to address the issue.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 15.6 **Description** A website may be able to access sensitive user data when resolving symlinks. This issue was addressed by adding an additional prompt for user consent. **Recommendations** Update to macOS version 15.6.

**Name of the Vulnerable Software and Affected Versions** The product name cannot be determined. **Description** A bug collision issue has been reported, with a similarity to an issue reported to Apple. There is limited information available about this issue. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Apple iOS and iPadOS versions prior to 18.4 Apple macOS versions prior to Sequoia 15.4 Apple visionOS versions prior to 2.4 **Description** A security issue was identified where a flaw allows an application to potentially access sensitive user data. Microsoft Threat Intelligence discovered a vulnerability (CVE-2025-31199), dubbed "Sploitlight," that bypasses the Transparency, Consent, and Control (TCC) framework via Spotlight plugins. This bypass allows attackers to access sensitive data, including geolocation and metadata cached by Apple Intelligence. The vulnerability allows attackers to extract sensitive information from caches utilized by Apple Intelligence. The issue was addressed with improved data redaction in the updated versions. There is no information available regarding the number of potentially affected devices or any real-world incidents where this issue was exploited. The vulnerability exploits the privileged access of Spotlight plugins. **Recommendations** Update Apple iOS to version 18.4 or later. Update Apple iPadOS to version 18.4 or later. Update Apple macOS to version Sequoia 15.4 or later. Update Apple visionOS to version 2.4 or later.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 15.2 **Description** The issue is related to a configuration problem that has been addressed with additional restrictions. It allows an app to modify protected parts of the file system. The vulnerability can be exploited by local attackers with root privileges and user interaction, potentially leading to the installation of malicious kernel drivers, rootkits, or other persistent malware. The vulnerability is related to the Storage Kit component, which is responsible for maintaining disk state, and it can be exploited by loading third-party kernel extensions, bypassing System Integrity Protection (SIP). **Recommendations** To resolve the issue, update to macOS Sequoia 15.2 or later. As a temporary workaround, consider restricting access to the Storage Kit component or disabling the loading of third-party kernel extensions until a patch is available. Additionally, users should be cautious when interacting with applications that require root privileges, as this could potentially lead to exploitation of the vulnerability.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to Sequoia 15 **Description** A security issue exists in macOS related to deficiencies in access control. Exploitation of this issue may allow an attacker to bypass privacy settings. Microsoft discovered this flaw, dubbed "HM Surf", in Apple’s macOS TCC framework. This bypass could allow unauthorized access to sensitive data such as location, camera, and microphone. The issue was addressed by removing the vulnerable code in macOS Sequoia 15. Microsoft Defender for Endpoint detects exploitation attempts, including anomalous modification of the Preferences file. The vulnerability allows malicious apps to access user data without consent, potentially leading to severe privacy breaches. The flaw involves bypassing the Transparency, Consent, and Control (TCC) technology, specifically for the Safari browser. Attackers can manipulate Safari’s configuration files to gain access to sensitive data without user permission. **Recommendations** Update to macOS Sequoia 15 or later.

**Name of the Vulnerable Software and Affected Versions** Google Chrome on Chrome OS versions prior to 102.0.5005.125 **Description** The issue is related to an out of bounds write in the Chrome OS Audio Server, which can potentially lead to heap corruption via crafted audio metadata. This could allow a remote attacker to exploit the issue, potentially resulting in a denial of service or the execution of arbitrary code. **Recommendations** For versions prior to 102.0.5005.125, update to version 102.0.5005.125 or later to resolve the issue.