Description
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. An app may be able to gain root privileges.
Published: 2025-03-31
Score: 7.8 High
EPSS: < 1% Very Low
KEV: No
Impact: Root Privilege Escalation
Action: Immediate Patch
AI Analysis

Impact

An application may exploit a permissions oversight to acquire root‑level rights, enabling it to modify system settings, access protected data, and run arbitrary code. The flaw originates from improper enforcement of file or resource permissions (CWE-276), allowing a local process to perform privileged operations.

Affected Systems

Apple macOS versions preceding Sequoia 15.4, preceding Sonoma 14.7.5, and preceding Ventura 13.7.5 are vulnerable to this permissions issue.

Risk and Exploitability

The CVSS score of 7.8 indicates high severity for privilege escalation, yet the EPSS score of less than 1 % suggests it is unlikely to be actively exploited. The vulnerability is not listed in the CISA KEV catalog, confirming no known exploits. Attackers would need local access or the ability to run malicious software on the affected system.

Generated by OpenCVE AI on April 28, 2026 at 03:02 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade to macOS Sequoia 15.4, Sonoma 14.7.5, Ventura 13.7.5 or newer to apply the permission restriction fix.
  • Restrict or disable third‑party applications that run with elevated privileges, applying the principle of least privilege.
  • Maintain macOS and applications with the latest security updates; refer to Apple Support articles 122373–122375 for patch guidance.

Generated by OpenCVE AI on April 28, 2026 at 03:02 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2025-8943 A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to gain root privileges.
History

Tue, 28 Apr 2026 03:30:00 +0000

Type Values Removed Values Added
Title Permission Escalation Allowing Applications to Gain Root Privileges on macOS

Thu, 02 Apr 2026 20:30:00 +0000

Type Values Removed Values Added
Description A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to gain root privileges. A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. An app may be able to gain root privileges.

Mon, 03 Nov 2025 22:30:00 +0000

Type Values Removed Values Added
References

Fri, 04 Apr 2025 19:45:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple macos
CPEs cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
Vendors & Products Apple
Apple macos

Wed, 02 Apr 2025 14:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Wed, 02 Apr 2025 14:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-276
Metrics cvssV3_1

{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}

Mon, 31 Mar 2025 22:45:00 +0000

Type Values Removed Values Added
Description A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to gain root privileges.
References

Subscriptions

Apple Macos
cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2026-04-02T18:14:12.778Z

Reserved: 2025-01-17T00:00:45.017Z

Link: CVE-2025-24267

cve-icon Vulnrichment

Updated: 2025-11-03T21:11:58.717Z

cve-icon NVD

Status : Modified

Published: 2025-03-31T23:15:23.623

Modified: 2026-04-02T19:19:30.580

Link: CVE-2025-24267

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T03:15:05Z

Weaknesses