August 15, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Multiple WordPress Plugins Vulnerabilities
June 2, 2025Phishing Campaigns Exploiting Google Apps Script to Evade Detection – Active IOCs
June 2, 2025Multiple WordPress Plugins Vulnerabilities
June 2, 2025Phishing Campaigns Exploiting Google Apps Script to Evade Detection – Active IOCs
June 2, 2025
Severity
Medium
Analysis Summary
CVE-2025-31264 CVSS:4.6
An authentication issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An attacker with physical access to a locked device may be able to view sensitive user information.
CVE-2025-31263 CVSS:9.1
The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.4. An app may be able to corrupt coprocessor memory.
Impact
- Information Disclosure
- Gain Access
Indicators of Compromise
CVE
CVE-2025-31264
CVE-2025-31263
Affected Vendors
- Apple
Affected Products
- macOS Ventura 13.7.5
- macOS Sequoia 15.4
- macOS Sonoma 14.7.5
Remediation
Refer to the Apple security document for patch, upgrade, or suggested workaround information.