CVE Vulnerabilities

CVE-2025-43256

Improper Privilege Management

Published: Jul 30, 2025 | Modified: Jul 31, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

This issue was addressed through improved state management. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7. An app may be able to gain root privileges.

Weakness

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

Affected Software

Name Vendor Start Version End Version
Macos Apple * 14.7.7 (excluding)
Macos Apple 15.0 (including) 15.6 (excluding)

Potential Mitigations

References