Sandbox Escape Vulnerability in macOS Sequoia by Apple
CVE-2025-24284

8.8HIGH

Key Information:

Vendor

Apple

Status
Vendor
CVE Published:
11 June 2026

What is CVE-2025-24284?

A vulnerability has been identified in macOS Sequoia that permits an application to escape its sandbox environment, potentially allowing unauthorized actions. This flaw has been patched in version 15.4, where enhanced checks were implemented to mitigate the risk of such exploits.

Affected Version(s)

macOS 0 < 15.4

References

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.