Downgrade Issue in Intel-based Mac Computers by Apple
CVE-2025-43522

3.3LOW

Key Information:

Vendor: Apple
Status: Mac OS
Vendor: CVE Published:; 12 December 2025

What is CVE-2025-43522?

A vulnerability has been identified in Intel-based Mac computers that allows an application to potentially access user-sensitive data due to inadequate code-signing restrictions. This issue has been addressed with the release of macOS Sequoia 15.7.3, which enhances the security by implementing additional code-signing measures to prevent unauthorized access. Users are advised to update their systems to the latest version to mitigate risks.

Affected Version(s)

macOS < 15.7

macOS < 26.2

References

https://support.apple.com/en-us/125887

https://support.apple.com/en-us/125886

CVSS V3.1

Score:

3.3

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Dec 12, 2025
Vulnerability Reserved
Apr 16, 2025

JSON