CVE-2025-43306
Privilege Escalation in macOS Sequoia
Publication date: 2026-05-26
Last updated on: 2026-05-26
Assigner: Apple Inc.
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| apple | macos_sequoia | 15.7 |
| apple | macos_sonoma | 14.8 |
| apple | macos_tahoe | 26 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a logic issue in certain versions of macOS (Sequoia 15.7, Sonoma 14.8, Tahoe 26) that was addressed by improving internal checks.
A malicious application exploiting this issue may be able to gain root privileges on the affected system.
How can this vulnerability impact me? :
If exploited, this vulnerability could allow a malicious app to gain root privileges, which means it could execute code with the highest level of system access.
This could lead to unauthorized control over the system, potentially allowing the attacker to modify system files, install malware, or access sensitive data.
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability, update your system to the fixed versions of macOS: Sequoia 15.7, Sonoma 14.8, or Tahoe 26.
Applying these updates will address the logic issue and prevent a malicious app from gaining root privileges.