Description
A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. An app may be able to access contact info related to notifications in Notification Center.
Published: 2025-09-15
Score: 3.3 Low
EPSS: < 1% Very Low
KEV: No
Impact: Privacy Leak: Exposure of contact information
Action: Update OS
AI Analysis

Impact

A privacy issue allows an application to read contact information associated with notifications in Notification Center. The flaw is an improper data redaction that exposes sensitive contact details, constituting a confidentiality breach and a violation of personal privacy. It is classified as CWE-359, a privacy disclosure weakness.

Affected Systems

Apple macOS systems are affected, specifically all releases prior to macOS Sequoia 15.7, macOS Sonoma 14.8, and macOS Tahoe 26. Updates to these versions or later remove the vulnerability.

Risk and Exploitability

The CVSS score of 3.3 indicates a low severity flaw, and the EPSS score of less than 1% suggests a very low probability of exploitation. The vulnerability is not listed in the CISA KEV catalog. Likely, the attack vector involves a local application that has permission to access the Notification Center; this inference is based on the description that an app may access contact info related to notifications.

Generated by OpenCVE AI on April 28, 2026 at 10:48 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest macOS updates that include Sequoia 15.7, Sonoma 14.8, or Tahoe 26 or newer.
  • Limit application access to Notification Center by adjusting the permissions in System Preferences → Notifications, allowing only trusted apps to show notifications.
  • Remove or disable applications that access Notification Center and display contact information if they are no longer needed.

Generated by OpenCVE AI on April 28, 2026 at 10:48 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2025-29331 A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. An app may be able to access contact info related to notifications in Notification Center.
History

Tue, 28 Apr 2026 11:15:00 +0000

Type Values Removed Values Added
Title Privacy Leak: Exposure of Contact Information from Notification Center Logs

Thu, 02 Apr 2026 20:30:00 +0000

Type Values Removed Values Added
Description A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14.8, macOS Sequoia 15.7. An app may be able to access contact info related to notifications in Notification Center. A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. An app may be able to access contact info related to notifications in Notification Center.
References

Tue, 04 Nov 2025 02:30:00 +0000

Type Values Removed Values Added
References

Tue, 04 Nov 2025 01:45:00 +0000

Type Values Removed Values Added
Description A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. An app may be able to access contact info related to notifications in Notification Center. A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14.8, macOS Sequoia 15.7. An app may be able to access contact info related to notifications in Notification Center.

Mon, 03 Nov 2025 19:30:00 +0000

Type Values Removed Values Added
References

Wed, 17 Sep 2025 13:45:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*

Wed, 17 Sep 2025 11:00:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple macos
Apple macos Sequoia
Apple macos Sonoma
Apple macos Tahoe
Vendors & Products Apple
Apple macos
Apple macos Sequoia
Apple macos Sonoma
Apple macos Tahoe

Tue, 16 Sep 2025 18:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-359
Metrics cvssV3_1

{'score': 3.3, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 15 Sep 2025 22:45:00 +0000

Type Values Removed Values Added
Description A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. An app may be able to access contact info related to notifications in Notification Center.
References

Subscriptions

Apple Macos Macos Sequoia Macos Sonoma Macos Tahoe
cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2026-04-02T18:12:24.712Z

Reserved: 2025-04-16T15:24:37.104Z

Link: CVE-2025-43301

cve-icon Vulnrichment

Updated: 2025-11-03T18:10:30.951Z

cve-icon NVD

Status : Modified

Published: 2025-09-15T23:15:33.313

Modified: 2026-04-02T19:20:22.530

Link: CVE-2025-43301

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T11:00:14Z

Weaknesses