This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sonoma 14.8.2, macOS Sequoia 15.7.2. An app may be able to access protected user data.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| Apple |
|
No data.
References
History
Tue, 04 Nov 2025 17:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| CPEs | cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* |
Tue, 04 Nov 2025 16:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Apple
Apple macos Apple macos Sequoia Apple macos Sonoma |
|
| Vendors & Products |
Apple
Apple macos Apple macos Sequoia Apple macos Sonoma |
Tue, 04 Nov 2025 16:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Weaknesses | CWE-59 | |
| Metrics |
cvssV3_1
|
Tue, 04 Nov 2025 01:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sonoma 14.8.2, macOS Sequoia 15.7.2. An app may be able to access protected user data. | |
| References |
|
MITRE
Status: PUBLISHED
Assigner: apple
Published: 2025-11-04T01:16:27.939Z
Updated: 2025-11-04T15:44:31.629Z
Reserved: 2025-04-16T15:24:37.118Z
Link: CVE-2025-43394
Vulnrichment
Updated: 2025-11-04T15:43:33.184Z
NVD
Status : Analyzed
Published: 2025-11-04T02:15:46.180
Modified: 2025-11-04T16:56:30.453
Link: CVE-2025-43394
Redhat
No data.