State Management Flaw in Apple macOS Sequoia Exposes Password Fields
CVE-2025-43542

Currently unrated

Key Information:

Vendor: Apple
Status: Mac OS
Vendor: CVE Published:; 12 December 2025

What is CVE-2025-43542?

A state management flaw in macOS Sequoia allows password fields to be unintentionally revealed during remote control sessions over FaceTime. This can compromise the confidentiality of sensitive information when users are interacting with their devices remotely. Apple has addressed this issue in version 15.7.3 of macOS Sequoia, enhancing its security measures to prevent such lapses.

Affected Version(s)

macOS < 15.7

References

https://support.apple.com/en-us/125887

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 12, 2025
Vulnerability Reserved
Apr 16, 2025

JSON