Description
An authentication issue was addressed with improved state management. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. An attacker with physical access to a locked device may be able to view sensitive user information.
Published: 2025-05-29
Score: 4.6 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Unauthorized Sensitive User Information Disclosure
Action: Assess Impact
AI Analysis

Impact

An authentication issue related to state management was identified, allowing an attacker who has physical access to a locked Apple macOS device to view sensitive user information. The vulnerability arises from a flaw in how the system tracks authentication state, enabling bypass of expected security checks. While the flaw does not provide full control or remote code execution, it compromises privacy by exposing data that should remain protected while the device is locked.

Affected Systems

Apple macOS installations that are not running macOS Sequoia 15.4 or newer, macOS Sonoma 14.7.5 or newer, and macOS Ventura 13.7.5 or newer are susceptible to this authentication bypass. Users of older macOS releases should verify their hardware and software versions against these supported releases.

Risk and Exploitability

The CVSS score of 4.6 indicates low severity, and an EPSS score of less than 1% highlights a very low probability of exploitation at the time of analysis. Because the vulnerability requires physical access to a locked device, the attack surface is limited to scenarios where an adversary can physically reach the target. This vulnerability is not listed in the CISA KEV catalog, and no public exploits are currently documented. Official guidance recommends upgrading to the patched macOS releases to mitigate the weakness.

Generated by OpenCVE AI on April 28, 2026 at 01:31 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the macOS operating system to at least macOS Sequoia 15.4, macOS Sonoma 14.7.5, or macOS Ventura 13.7.5 to apply the state‑management fix
  • Restrict physical access to the device by locking keys, securing the environment, and using a secure facility or locked enclosure
  • Enable FileVault full‑disk encryption to protect data while the device is locked, reducing the impact if physical access is obtained

Generated by OpenCVE AI on April 28, 2026 at 01:31 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2025-16427 An authentication issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An attacker with physical access to a locked device may be able to view sensitive user information.
History

Tue, 28 Apr 2026 02:00:00 +0000

Type Values Removed Values Added
Title Authentication Bypass on Locked macOS Devices Allows Viewing Sensitive User Information

Thu, 02 Apr 2026 20:30:00 +0000

Type Values Removed Values Added
Description An authentication issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An attacker with physical access to a locked device may be able to view sensitive user information. An authentication issue was addressed with improved state management. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. An attacker with physical access to a locked device may be able to view sensitive user information.

Mon, 02 Jun 2025 16:15:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple macos
CPEs cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
Vendors & Products Apple
Apple macos

Fri, 30 May 2025 23:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 30 May 2025 22:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-287
Metrics cvssV3_1

{'score': 4.6, 'vector': 'CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N'}

Thu, 29 May 2025 21:45:00 +0000

Type Values Removed Values Added
Description An authentication issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.7.5, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An attacker with physical access to a locked device may be able to view sensitive user information.
References

Subscriptions

Apple Macos
cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2026-04-02T18:14:40.829Z

Reserved: 2025-03-27T16:13:58.339Z

Link: CVE-2025-31264

cve-icon Vulnrichment

Updated: 2025-05-30T14:42:44.182Z

cve-icon NVD

Status : Modified

Published: 2025-05-29T22:15:22.350

Modified: 2026-04-02T19:19:58.010

Link: CVE-2025-31264

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T01:45:18Z

Weaknesses