Analysis Summary

CVE-2025-24112 CVSS:5.5

Apple macOS Sonoma is vulnerable to a denial of service in the AppleGraphicsControl component when parsing a file.

CVE-2024-44172 CVSS:5.5

Apple macOS Ventura could allow a local attacker to access contacts, caused by a privacy issue in the Contacts component when using a specially crafted application.

CVE-2025-24102 CVSS:5.5

Apple macOS Ventura could allow a local attacker to determine a user’s current location, caused by an issue in the CoreRoutine component when using a specially crafted application.

CVE-2025-24146 CVSS:5.5

Apple macOS Ventura could allow a local attacker to expose user contact information in system logging, caused by an issue in the Photos Storage component when deleting a conversation in Messages.

Impact

• Denial of Service
• Information Disclosure

Indicators of Compromise

CVE

• CVE-2025-24112

• CVE-2024-44172

• CVE-2025-24102

• CVE-2025-24146

Affected Vendors

Remediation

Upgrade to the latest version, available from the Apple Website.

Apple Website