Description
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may be able to modify protected parts of the file system.
Published: 2025-07-29
Score: 9.8 Critical
EPSS: < 1% Very Low
KEV: No
Impact: Privilege Escalation
Action: Immediate Patch
AI Analysis

Impact

An application can modify protected file system components, allowing it to overwrite critical system files or binaries. This permission bypass creates a clear path toward privilege escalation and potentially enables arbitrary code execution. The weakness corresponds to CWE-732 and is rated with a CVSS score of 9.8, indicating a critical severity level. The exploit probability, as reflected by an EPSS score of less than 1%, is low but nonzero, so while the likelihood of widespread exploitation is modest, the consequences are severe.

Affected Systems

Apple macOS systems running any version that predates the security update are vulnerable. The fix appears in macOS Sequoia 15.6, macOS Sonoma 14.7.7, and macOS Ventura 13.7.7. Users operating older releases of these operating systems are at risk; no specific patch versions are listed beyond those releases.

Risk and Exploitability

With a CVSS of 9.8 the vulnerability carries a critical rating, and although an EPSS score below 1% indicates rare use, the attack vector is likely local through the installation or execution of a privileged application. The vulnerability is not currently listed in the CISA KEV catalog, reducing evidence of active exploitation, but the potential for system compromise remains high if a malicious app gains the necessary permissions.

Generated by OpenCVE AI on April 28, 2026 at 00:58 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest macOS updates that include the fix—Sequoia 15.6 or later, Sonoma 14.7.7 or later, or Ventura 13.7.7 or later.
  • Restrict the privileges granted to applications that do not require elevated access; disable or remove unnecessary privileged apps.
  • Monitor system file integrity by reviewing system logs and employing file integrity monitoring tools to detect unauthorized modifications.

Generated by OpenCVE AI on April 28, 2026 at 00:58 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2025-23056 A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Ventura 13.7.7, macOS Sonoma 14.7.7. An app may be able to modify protected parts of the file system.
History

Tue, 28 Apr 2026 01:15:00 +0000

Type Values Removed Values Added
Title Permission Bypass Enabling Modification of Protected File System Paths

Thu, 02 Apr 2026 20:30:00 +0000

Type Values Removed Values Added
Description A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Ventura 13.7.7, macOS Sonoma 14.7.7. An app may be able to modify protected parts of the file system. A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may be able to modify protected parts of the file system.

Mon, 03 Nov 2025 20:30:00 +0000

Type Values Removed Values Added
References

Thu, 31 Jul 2025 20:15:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*

Thu, 31 Jul 2025 18:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-732
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Wed, 30 Jul 2025 11:15:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple macos
Apple macos Sequoia
Apple macos Sonoma
Apple macos Ventura
Vendors & Products Apple
Apple macos
Apple macos Sequoia
Apple macos Sonoma
Apple macos Ventura

Wed, 30 Jul 2025 00:15:00 +0000

Type Values Removed Values Added
Description A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may be able to modify protected parts of the file system. A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Ventura 13.7.7, macOS Sonoma 14.7.7. An app may be able to modify protected parts of the file system.

Tue, 29 Jul 2025 23:45:00 +0000

Type Values Removed Values Added
Description A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may be able to modify protected parts of the file system.
References

Subscriptions

Apple Macos Macos Sequoia Macos Sonoma Macos Ventura
cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2026-04-02T18:11:04.279Z

Reserved: 2025-04-16T15:24:37.092Z

Link: CVE-2025-43243

cve-icon Vulnrichment

Updated: 2025-11-03T20:02:37.417Z

cve-icon NVD

Status : Modified

Published: 2025-07-30T00:15:36.110

Modified: 2026-04-02T19:20:11.620

Link: CVE-2025-43243

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T01:00:10Z

Weaknesses