Permissions Issue in Apple macOS Products Exposing Protected Files
CVE-2025-24233

9.8CRITICAL

Key Information:

Vendor: Apple
Status: Mac OS
Vendor: CVE Published:; 31 March 2025

Summary

A permissions vulnerability has been identified in Apple's macOS that allows potentially malicious applications to gain unauthorized access to protected files. This situation arises due to inadequate restrictions, which could permit these apps to read or modify sensitive data. The problem has been rectified in macOS Ventura 13.7.5, macOS Sequoia 15.4, and macOS Sonoma 14.7.5, which include enhanced security measures to safeguard against such threats.

Affected Version(s)

macOS < 15.4

macOS < 14.7

macOS < 13.7

References

https://support.apple.com/en-us/122373

https://support.apple.com/en-us/122374

https://support.apple.com/en-us/122375

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 31, 2025
Vulnerability Reserved
Jan 17, 2025