CVE-2025-43273
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-07-30
Last updated on: 2026-04-02
Assigner: Apple Inc.
Description
Description
A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.8. A sandboxed process may be able to circumvent sandbox restrictions.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| apple | macos | to 14.8 (exc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-693 | The product does not use or incorrectly uses a protection mechanism that provides sufficient defense against directed attacks against the product. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a permissions issue in macOS Sequoia 15.6 where a sandboxed process may be able to bypass or circumvent the sandbox restrictions that are supposed to limit its capabilities.
How can this vulnerability impact me? :
If exploited, this vulnerability could allow a sandboxed process to perform actions beyond its intended restrictions, potentially leading to unauthorized access or actions on the system.
What immediate steps should I take to mitigate this vulnerability?
Update your system to macOS Sequoia 15.6 or later, as this version includes the fix for the sandbox restrictions bypass vulnerability.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70