Logic Issue in macOS Tahoe Leading to Sensitive Data Exposure
CVE-2025-46283

5.5MEDIUM

Key Information:

Vendor: Apple
Status: Mac OS
Vendor: CVE Published:; 17 December 2025

What is CVE-2025-46283?

A logic issue was identified in macOS Tahoe that permitted unauthorized access to sensitive user data by potentially malicious applications. This vulnerability has been addressed with improved validation mechanisms in version 26.2 of macOS Tahoe, ensuring that user data remains protected from unauthorized access.

Affected Version(s)

macOS < 26.2

References

https://support.apple.com/en-us/125886

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Dec 17, 2025
Vulnerability Reserved
Apr 22, 2025

JSON

Apple

What is CVE-2025-46283?

Affected Version(s)

References

CVSS V3.1

Timeline