Permissions Issue in Apple Watch and iOS Products
CVE-2025-43329

8.8HIGH

Key Information:

Vendor: Apple
Status: iOS And iPad OS; TV OS; Watch OS; Mac OS
Vendor: CVE Published:; 15 September 2025

What is CVE-2025-43329?

A permissions issue exists in certain Apple platforms that could allow an app to escape its sandbox, potentially granting unauthorized access to system resources. This vulnerability has been addressed with enhanced restrictions to fortify the security of watchOS, tvOS, macOS, iOS, and iPadOS in their most recent versions.

Affected Version(s)

iOS and iPadOS < 26

macOS < 26

tvOS < 26

References

https://support.apple.com/en-us/125108

https://support.apple.com/en-us/125114

https://support.apple.com/en-us/125116

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 15, 2025
Vulnerability Reserved
Apr 16, 2025

JSON