Data Access Vulnerability in Apple macOS Tahoe
CVE-2025-43471

5.5MEDIUM

Key Information:

Vendor: Apple
Status: Mac OS
Vendor: CVE Published:; 12 December 2025

What is CVE-2025-43471?

A recently identified vulnerability in macOS Tahoe allows unauthorized applications to potentially access sensitive user data. Although this issue has been addressed with enhanced security checks in version 26.1, users of earlier versions such as 26.0 and 26.0.1 should be aware of the risks associated with untrusted applications. It is recommended to update to the latest version to ensure optimal protection against possible data breaches.

Affected Version(s)

macOS < 26.1

References

https://support.apple.com/en-us/125634

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Dec 12, 2025
Vulnerability Reserved
Apr 16, 2025

JSON