Apple Security
Apple fixed two flaws used in targeted attacks with macOS Sequoia 15.4.1
In its April 18, 2025 security note, Apple said it was aware of targeted exploitation involving CVE-2025-31200 and CVE-2025-31201.
Security update
In the macOS Sequoia 15.4.1 security content document, Apple disclosed awareness of targeted exploitation for two security flaws. One issue is tied to CoreAudio-based code execution and the other to a Pointer Authentication bypass scenario.
Why it should be tracked
Apple used the phrase "extremely sophisticated attack against specific targeted individuals" for these issues. That elevates the importance of device patching and targeted-device security reviews.
- CVE-2025-31200: code execution risk through a malicious media stream
- CVE-2025-31201: Pointer Authentication bypass scenario
- Apple and Google TAG attribution in the advisory context