Authorization Flaw in macOS Sequoia by Apple
CVE-2025-43251

5.5MEDIUM

Key Information:

Vendor

Apple
Status
Mac OS
Vendor
CVE Published:
30 July 2025

What is CVE-2025-43251?

An authorization flaw has been identified in Apple's macOS Sequoia, particularly affecting the management of Keychain items. This vulnerability allows a local attacker to potentially gain unauthorized access to sensitive Keychain data. Apple has addressed this issue in version 15.6 through enhanced state management. Users are advised to update to the latest version to ensure their data remains secure.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

macOS < 15.6

References

https://support.apple.com/en-us/124149

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

JSON
.