Memory Corruption Vulnerability in macOS Sequoia by Apple
CVE-2025-31280

7.8HIGH

Key Information:

Vendor: Apple
Status: Mac OS
Vendor: CVE Published:; 30 July 2025

What is CVE-2025-31280?

A memory corruption issue in Apple's macOS Sequoia 15.6 has been identified, highlighted by its potential to lead to heap corruption when a maliciously crafted file is processed. This vulnerability was addressed with enhanced validation mechanisms to mitigate risks associated with improper memory handling. Users are advised to update their systems to ensure protection against this exploit.

Affected Version(s)

macOS < 15.6

References

https://support.apple.com/en-us/124149

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 30, 2025