Permissions Issue in Apple Products Can Bypass Sandbox Restrictions
CVE-2025-43358

8.8HIGH

Key Information:

Vendor

Apple

Vendor
CVE Published:
15 September 2025

What is CVE-2025-43358?

A permissions issue affecting various Apple operating systems has been identified, allowing certain shortcuts potentially to bypass established sandbox restrictions. This vulnerability has been addressed through enhanced sandbox protections in the latest versions of macOS and iOS. Users are recommended to update their systems to the latest versions to mitigate risks associated with this vulnerability.

Affected Version(s)

iOS and iPadOS < 26

iOS and iPadOS < 18.7

macOS < 14.8

References

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.