Sensitive Data Exposure in macOS Products by Apple
CVE-2025-43530

5.5MEDIUM

Key Information:

Vendor: Apple
Status: iOS And iPad OS; Mac OS
Vendor: CVE Published:; 12 December 2025

Badges

👾 Exploit Exists📰 News Worthy

What is CVE-2025-43530?

A vulnerability in macOS could allow unauthorized applications to access sensitive user data. This issue has been addressed in the latest updates for macOS Sonoma and macOS Sequoia, enhancing security measures to prevent such unauthorized access. Users are encouraged to update their operating systems to the latest versions to protect their data.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

iOS and iPadOS < 18.7

macOS < 14.8

macOS < 15.7

News Articles

Cyber Press

CVE-2025-43530

New macOS TCC Bypass Vulnerability Allows Attackers to Access Sensitive User Data

By exploiting a private API within the ScreenReader.framework ,a core component of the VoiceOver accessibility feature malicious actors can gain unauthorized access to sensitive user data.

4 weeks ago

References

https://support.apple.com/en-us/125885

https://support.apple.com/en-us/125888

https://support.apple.com/en-us/125887

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

👾
Exploit known to exist
Jan 6, 2026
📰
First article discovered by Cyber Press
Jan 6, 2026
Vulnerability published
Dec 12, 2025
Vulnerability Reserved
Apr 16, 2025

JSON

Apple