This issue was addressed with additional entitlement checks. This issue is fixed in macOS Sequoia 15.7.2, macOS Tahoe 26.1, macOS Sonoma 14.8.2. An app may be able to access user-sensitive data.
References
| Link | Resource |
|---|---|
| https://support.apple.com/en-us/125634 | |
| https://support.apple.com/en-us/125635 | Release Notes Vendor Advisory |
| https://support.apple.com/en-us/125636 | Release Notes Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
17 Dec 2025, 21:16
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
|
| Summary | (en) This issue was addressed with additional entitlement checks. This issue is fixed in macOS Sequoia 15.7.2, macOS Tahoe 26.1, macOS Sonoma 14.8.2. An app may be able to access user-sensitive data. |
04 Nov 2025, 16:26
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* | |
| First Time |
Apple macos
Apple |
|
| References | () https://support.apple.com/en-us/125635 - Release Notes, Vendor Advisory | |
| References | () https://support.apple.com/en-us/125636 - Release Notes, Vendor Advisory |
04 Nov 2025, 15:15
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | CWE-200 | |
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.5 |
04 Nov 2025, 02:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-11-04 02:15
Updated : 2025-12-17 21:16
NVD link : CVE-2025-43411
Mitre link : CVE-2025-43411
CVE.ORG link : CVE-2025-43411
JSON object : View
Products Affected
apple
- macos
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor