CVE-2025-24284

Received Received - Intake

macOS Sequoia Sandbox Escape Vulnerability

Publication date: 2026-06-11

Last updated on: 2026-06-11

Assigner: Apple Inc.

Description

This issue was addressed with improved checks to prevent unauthorized actions. This issue is fixed in macOS Sequoia 15.4. An app may be able to break out of its sandbox.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published

2026-06-11

Last Modified

2026-06-11

Generated

2026-06-11

EPSS Evaluated

N/A

NVD

CVE-2025-24284

EUVD

EUVD-2025-210114

Affected Vendors & Products

Vendor	Product	Version / Range
apple	macos_sequoia	to 15.4 (inc)

Helpful Resources

Exploitability

CWE

KEV

CWE ID	Description
CWE-693	The product does not use or incorrectly uses a protection mechanism that provides sufficient defense against directed attacks against the product.

Attack-Flow Graph

AI Quick Actions have not been generated yet.

Hi! I’m here to help you understand CVE-2025-24284. Ask me anything about the vulnerability, its impact, or mitigation strategies.

0/70

CVE-2025-24284

macOS Sequoia Sandbox Escape Vulnerability

Description

CVSS Scores

EPSS Scores

Meta Information

Affected Vendors & Products

Helpful Resources

Exploitability

Attack-Flow Graph

AI Quick Actions

Chat Assistant

EPSS Chart