CVE Vulnerabilities

CVE-2025-43199

Improper Privilege Management

Published: Jul 30, 2025 | Modified: Jul 31, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

A permissions issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. A malicious app may be able to gain root privileges.

Weakness

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

Affected Software

Name Vendor Start Version End Version
Macos Apple * 13.7.7 (excluding)
Macos Apple 14.0 (including) 14.7.7 (excluding)
Macos Apple 15.0 (including) 15.6 (excluding)

Potential Mitigations

References