Description
A permissions issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. A malicious app may be able to gain root privileges.
Published: 2025-07-29
Score: 9.8 Critical
EPSS: < 1% Very Low
KEV: No
Impact: Privilege Escalation to Root
Action: Immediate Patch
AI Analysis

Impact

The vulnerability arises from a permissions flaw that was remedied by removing the vulnerable code. An attacker can exploit this flaw by installing or executing a malicious application that gains root privileges, compromising system integrity and confidentiality by enabling full control over the machine. The weakness aligns with CWE-269, reflecting improper authorization controls.

Affected Systems

Apple macOS versions prior to Sequoia 15.6, Sonoma 14.7.7, and Ventura 13.7.7 are affected. Users running earlier releases of these macOS families are at risk until they apply the security update that removed the vulnerable code.

Risk and Exploitability

The CVSS score of 9.8 indicates a severe threat. The EPSS score is below 1%, suggesting low current exploitation probability, and the vulnerability is not listed in CISA KEV. Nevertheless, the flaw could be exploited locally by any application with normal user permissions, making the attack vector likely a malicious or compromised app installed by the user or through software distribution channels. Given the critical severity, patching remains essential.

Generated by OpenCVE AI on April 28, 2026 at 00:43 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update macOS to the latest security release: Sequoia 15.6, Sonoma 14.7.7, or Ventura 13.7.7, which removes the vulnerable permissions code.
  • Revoke any existing access grants that were improperly elevated by the vulnerability, ensuring apps run with the least privilege necessary.
  • Enforce Gatekeeper policies to block unsigned or non-notarized applications from installing or executing.
  • Monitor system logs for anomalous privilege escalation events and apply any additional security controls such as integrity protection tools.

Generated by OpenCVE AI on April 28, 2026 at 00:43 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2025-23085 A permissions issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. A malicious app may be able to gain root privileges.
History

Tue, 28 Apr 2026 01:00:00 +0000

Type Values Removed Values Added
Title macOS Privilege Escalation via Permissions Bypass

Fri, 27 Feb 2026 14:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

 ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Mon, 03 Nov 2025 20:30:00 +0000

Type Values Removed Values Added
References

Thu, 31 Jul 2025 21:15:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*

Wed, 30 Jul 2025 18:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-269
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Wed, 30 Jul 2025 11:15:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple macos
Apple macos Sequoia
Apple macos Sonoma
Apple macos Ventura
Vendors & Products Apple
Apple macos
Apple macos Sequoia
Apple macos Sonoma
Apple macos Ventura

Tue, 29 Jul 2025 23:45:00 +0000

Type Values Removed Values Added
Description A permissions issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. A malicious app may be able to gain root privileges.
References

Subscriptions

Apple Macos Macos Sequoia Macos Sonoma Macos Ventura
cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2026-04-02T18:15:36.512Z

Reserved: 2025-04-16T15:24:37.087Z

Link: CVE-2025-43199

cve-icon Vulnrichment

Updated: 2025-11-03T20:00:06.407Z

cve-icon NVD

Status : Modified

Published: 2025-07-30T00:15:32.820

Modified: 2025-11-03T20:18:51.553

Link: CVE-2025-43199

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T00:45:17Z

Weaknesses