Permissions Issue in macOS Sequoia by Apple
CVE-2025-43387

7.8HIGH

Key Information:

Vendor: Apple
Status: Mac OS
Vendor: CVE Published:; 4 November 2025

What is CVE-2025-43387?

A significant permissions issue has been identified in macOS Sequoia, where an improperly restricted application could gain unauthorized root privileges. The issue was effectively addressed in macOS Sequoia 15.7.2, highlighting the importance of keeping systems updated to mitigate potential security threats. Users are advised to upgrade to the latest version to prevent exploitation by malicious applications.

Affected Version(s)

macOS < 26.1

macOS < 15.7

References

https://support.apple.com/en-us/125634

https://support.apple.com/en-us/125635

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 4, 2025
Vulnerability Reserved
Apr 16, 2025

JSON