Logic Issue in macOS Products Allowing Access to Sensitive User Data
CVE-2025-43289

Currently unrated

Key Information:

Vendor

Apple
Status
Mac OS
Vendor
CVE Published:
26 May 2026

What is CVE-2025-43289?

A logic flaw in specific macOS versions may allow a malicious application to gain unauthorized access to sensitive user data. This vulnerability underscores the importance of proper validation in software design. Apple has addressed this issue with updates in macOS Sequoia 15.7, macOS Sonoma 14.8, and macOS Tahoe 26, ensuring enhanced security and protecting user information from potential threats.

Affected Version(s)

macOS 0 < 14.8

macOS 0 < 15.7

macOS 0 < 26

References

https://support.apple.com/en-us/125110
https://support.apple.com/en-us/125111
https://support.apple.com/en-us/125112

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.