Rewterz

Multiple Fortinet Products Vulnerabilities

March 4, 2025
Rewterz

Hackers Exploiting PowerShell and Legitimate Microsoft Apps to Deliver Malware

March 4, 2025

Multiple Apple macOS Vulnerabilities

Severity

Medium

Analysis Summary

CVE-2025-24112 CVSS:5.5

Apple macOS Sonoma is vulnerable to a denial of service in the AppleGraphicsControl component when parsing a file.

CVE-2024-44172 CVSS:5.5

Apple macOS Ventura could allow a local attacker to access contacts, caused by a privacy issue in the Contacts component when using a specially crafted application.

CVE-2025-24102 CVSS:5.5

Apple macOS Ventura could allow a local attacker to determine a user’s current location, caused by an issue in the CoreRoutine component when using a specially crafted application.

CVE-2025-24146 CVSS:5.5

Apple macOS Ventura could allow a local attacker to expose user contact information in system logging, caused by an issue in the Photos Storage component when deleting a conversation in Messages.

Impact

  • Denial of Service
  • Information Disclosure

Indicators of Compromise

CVE

  • CVE-2025-24112

  • CVE-2024-44172

  • CVE-2025-24102

  • CVE-2025-24146

Affected Vendors

  • Apple

Affected Products

  • Apple macOS Ventura- 13.7.2
  • Apple macOS Sonoma - 14.7.2

Remediation

Upgrade to the latest version, available from the Apple Website.

Apple Website

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.