Apple today released macOS Sequoia 15.4.1, a minor but important update to the macOS Sequoia operating system. The update patches security holes that have already been exploited in the wild.
Mac users should immediately install the macOS Sequoia 15.4 update and they can do so through the Software Update section in System Settings.
According to Apple’s release notes, macOS Sequoia 15.4.1 includes important bug fixes and security updates, and is recommended for all users.
Apple says that these vulnerabilities may have been actively exploited in the wild, and that the security flaws were potentially used in an “extremely sophisticated attack against specific targeted individuals.”
CoreAudio
Available for: macOS Sequoia
Impact: Processing an audio stream in a maliciously crafted media file may result in code execution. Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals on iOS.
Description: A memory corruption issue was addressed with improved bounds checking.
CVE-2025-31200: Apple and Google Threat Analysis Group
RPAC
Available for: macOS Sequoia
Impact: An attacker with arbitrary read and write capability may be able to bypass Pointer Authentication. Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals on iOS.
Description: This issue was addressed by removing the vulnerable code.
CVE-2025-31201: Apple
