Access Control Flaw in macOS by Apple
CVE-2025-43497

5.2MEDIUM

Key Information:

Vendor: Apple
Status: Mac OS
Vendor: CVE Published:; 12 December 2025

What is CVE-2025-43497?

The vulnerability affects Apple's macOS, where an application could potentially escape its sandbox environment due to insufficient access controls. The issue has been mitigated with the implementation of additional sandbox restrictions in macOS Tahoe 26.1, enhancing the overall security posture by closing a loophole that could be exploited. Users are encouraged to update to the latest version to ensure compliance with security best practices.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

macOS < 26.1

References

https://support.apple.com/en-us/125634

CVSS V3.1

Score:

5.2

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Dec 12, 2025
Vulnerability Reserved
Apr 16, 2025

JSON

Apple