CVE-2025-24253 - Vulnerability Details

- Symlink Handling Issue Exposes Protected User Data

Description

This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. An app may be able to access protected user data.

Published: 2025-03-31

Score: 9.8 Critical

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

Improved handling of symlinks introduced in recent macOS releases reveals that an application can read protected user data that should otherwise be inaccessible. The vulnerability leads to unauthorized disclosure of sensitive information and reflects a classic information exposure weakness (CWE‑200).

Affected Systems

Systems running macOS prior to the mentioned releases—Sequoia earlier than 15.4, Sonoma earlier than 14.7.5, and Ventura earlier than 13.7.5—are impacted. These versions are still user‑available releases and thus remain susceptible until updated.

Risk and Exploitability

The CVSS score of 9.8 indicates a critical severity. The EPSS score of less than 1 % suggests the probability of real‑world exploitation is low at present, and the vulnerability is not listed in the CISA KEV catalog. The likely attack vector is local or user‑initiated, inferred from the nature of the symlink handling flaw, though the source of the attack is not directly specified in the available description. Administrators should prioritize patching because the flaw permits direct access to protected data without further compromise.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Apple

macOS

affected

Version	Status	Constraints
`0`	affected	< 13.7.5
`0`	affected	< 14.7.5
`0`	affected	< 15.4

Configuration 1 [-]

OR	cpe:2.3:o:apple:macos::::::::
	cpe:2.3:o:apple:macos::::::::
	cpe:2.3:o:apple:macos::::::::

No data.

No data available yet.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade macOS to the latest release—Sequoia 15.4, Sonoma 14.7.5, or Ventura 13.7.5—to apply the patch that corrects symlink handling.
Configure applications to avoid following symlinks to system directories, ensuring path validation or sandboxing to mitigate accidental exposure.
Recommend disabling or limiting symlink resolution for third‑party applications that do not require such access.

Generated by OpenCVE AI on April 28, 2026 at 11:46 UTC.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
EUVD	EUVD-2025-8942	This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to access protected user data.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00698.

Exploitation none

Automatable yes

Technical Impact total

References

Link	Providers
http://seclists.org/fulldisclosure/2025/Apr/10
http://seclists.org/fulldisclosure/2025/Apr/8
http://seclists.org/fulldisclosure/2025/Apr/9
https://support.apple.com/en-us/122373
https://support.apple.com/en-us/122374
https://support.apple.com/en-us/122375

History

Tue, 28 Apr 2026 12:15:00 +0000

Type	Values Removed	Values Added
Title		Symlink Handling Issue Exposes Protected User Data

Thu, 02 Apr 2026 20:30:00 +0000

Type	Values Removed	Values Added
Description	This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to access protected user data.	This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. An app may be able to access protected user data.

Mon, 03 Nov 2025 22:30:00 +0000

Type	Values Removed	Values Added
References		http://seclists.org/fulldisclosure/2025/Apr/10 http://seclists.org/fulldisclosure/2025/Apr/8 http://seclists.org/fulldisclosure/2025/Apr/9

Mon, 07 Apr 2025 14:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Apple Apple macos
CPEs		cpe:2.3:o:apple:macos::::::::
Vendors & Products		Apple Apple macos

Tue, 01 Apr 2025 14:15:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-200
Metrics		cvssV3_1 `{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}` ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Mon, 31 Mar 2025 22:45:00 +0000

Type	Values Removed	Values Added
Description		This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to access protected user data.
References		https://support.apple.com/en-us/122373 https://support.apple.com/en-us/122374 https://support.apple.com/en-us/122375

Subscriptions

Apple Macos

MITRE

Status: PUBLISHED

Assigner: apple

Published: 2025-03-31T22:23:24.289Z

Updated: 2026-04-02T18:18:12.918Z

Reserved: 2025-01-17T00:00:45.013Z

Link: CVE-2025-24253

Vulnrichment

Updated: 2025-11-03T21:11:04.964Z

NVD

Status : Modified

Published: 2025-03-31T23:15:22.283

Modified: 2026-04-02T19:19:28.033

Link: CVE-2025-24253

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-04-28T12:00:13Z

Weaknesses

CWE-200

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation none

Automatable yes

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object