CVE Vulnerabilities

CVE-2025-43260

Incorrect Privilege Assignment

Published: Jul 30, 2025 | Modified: Aug 01, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

This issue was addressed with improved data protection. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7. An app may be able to hijack entitlements granted to other privileged apps.

Weakness

A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor.

Affected Software

Name Vendor Start Version End Version
Macos Apple * 14.7.7 (excluding)
Macos Apple 15.0 (including) 15.6 (excluding)

Potential Mitigations

References