Description
An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may gain unauthorized access to Local Network.
Published: 2025-07-29
Score: 8.8 High
EPSS: < 1% Very Low
KEV: No
Impact: Unauthorized Local Network Access
Action: Patch Now
AI Analysis

Impact

The vulnerability is an access‑control weakness that allowed an application to bypass existing sandbox restrictions and communicate over the local network without user consent.

Affected Systems

Apple macOS versions prior to Sequoia 15.6, Sonoma 14.7.7, and Ventura 13.7.7 were susceptible; all builds lacking the latest security update are affected and could be exploited by any application that can install and run sandboxed code.

Risk and Exploitability

The flaw receives a CVSS score of 8.8, indicating high severity, yet its EPSS score is below 1 % and it is not listed in the CISA KEV catalog, suggesting low short‑term exploitation probability. Attackers would need a privileged or malicious app installed on the target machine; the sandbox uplift mitigates exposure, but the issue could be leveraged by software that relies on deprecated network privileges.

Generated by OpenCVE AI on April 28, 2026 at 00:38 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade macOS to the latest supported releases, such as Sequoia 15.6, Sonoma 14.7.7, or Ventura 13.7.7 or newer.
  • Use the macOS firewall or System Settings > Network > Firewall to restrict local network traffic for applications that do not require such access.
  • Enforce strict application sandboxing policies and review entitlements for new or updated applications to prevent unnecessary network permissions.

Generated by OpenCVE AI on April 28, 2026 at 00:38 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2025-23078 An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Ventura 13.7.7, macOS Sonoma 14.7.7. An app may gain unauthorized access to Local Network.
History

Tue, 28 Apr 2026 01:00:00 +0000

Type Values Removed Values Added
Title macOS Sandbox Access Issue Allowing Unauthorized Local Network Access

Thu, 02 Apr 2026 20:30:00 +0000

Type Values Removed Values Added
Description An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Ventura 13.7.7, macOS Sonoma 14.7.7. An app may gain unauthorized access to Local Network. An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may gain unauthorized access to Local Network.

Mon, 03 Nov 2025 20:30:00 +0000

Type Values Removed Values Added
References

Thu, 31 Jul 2025 21:30:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*

Thu, 31 Jul 2025 10:30:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple macos
Apple sequoia
Apple sonoma
Apple ventura
Vendors & Products Apple
Apple macos
Apple sequoia
Apple sonoma
Apple ventura

Wed, 30 Jul 2025 16:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-284
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Wed, 30 Jul 2025 00:15:00 +0000

Type Values Removed Values Added
Description An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may gain unauthorized access to Local Network. An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Ventura 13.7.7, macOS Sonoma 14.7.7. An app may gain unauthorized access to Local Network.

Tue, 29 Jul 2025 23:45:00 +0000

Type Values Removed Values Added
Description An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may gain unauthorized access to Local Network.
References

Subscriptions

Apple Macos Sequoia Sonoma Ventura
cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2026-04-02T18:19:20.680Z

Reserved: 2025-04-16T15:24:37.100Z

Link: CVE-2025-43270

cve-icon Vulnrichment

Updated: 2025-11-03T20:03:50.263Z

cve-icon NVD

Status : Modified

Published: 2025-07-30T00:15:38.143

Modified: 2026-04-02T19:20:17.947

Link: CVE-2025-43270

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T00:45:17Z

Weaknesses