Description
This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Tahoe 26. An app may be able to access protected user data.
Published: 2025-09-15
Score: 5.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Access to protected user data
Action: Update macOS
AI Analysis

Impact

The vulnerability arises from inadequate handling of symbolic links in macOS, which can allow an application to reach files or directories it should not normally access. This flaw constitutes a weak access control mechanism (CWE-284) and can lead to confidentiality violations by enabling an attacker to read protected user data. The issue is reported to be mitigated with updated symlink processing logic.

Affected Systems

Apple macOS systems prior to macOS Tahoe 26 are affected, as the fix is included only in macOS Tahoe 26 and later releases. Any installation of earlier macOS versions that has not been updated to this release may still expose users to the flaw.

Risk and Exploitability

The CVSS score of 5.5 indicates moderate severity, focusing on confidentiality impact, while the EPSS score of less than 1% implies a low probability of active exploitation. The vulnerability is not listed in the CISA KEV catalog. Attackers would likely need to deliver or run a malicious application that leverages the symlink handling bug to access protected files, but no immediate remote exploitation vector is documented.

Generated by OpenCVE AI on April 28, 2026 at 18:40 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Install the macOS Tahoe 26 update or any later release that includes the symlink handling fix
  • Configure Gatekeeper or other app‑installation controls to limit the installation of third‑party applications that could exploit the symlink flaw
  • Ensure that third‑party applications run in a sandboxed environment with the least privilege necessary to minimize file access

Generated by OpenCVE AI on April 28, 2026 at 18:40 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2025-29277 This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Tahoe 26. An app may be able to access protected user data.
History

Tue, 28 Apr 2026 19:00:00 +0000

Type Values Removed Values Added
Title Access to Protected User Data via Symlink Handling Bug

Mon, 03 Nov 2025 19:30:00 +0000

Type Values Removed Values Added
References

Wed, 17 Sep 2025 14:15:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*

Wed, 17 Sep 2025 11:00:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple macos
Vendors & Products Apple
Apple macos

Tue, 16 Sep 2025 16:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 16 Sep 2025 15:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-284
Metrics cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N'}

Mon, 15 Sep 2025 22:45:00 +0000

Type Values Removed Values Added
Description This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Tahoe 26. An app may be able to access protected user data.
References

Subscriptions

Apple Macos
cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2026-04-02T18:25:46.347Z

Reserved: 2025-04-16T15:24:37.114Z

Link: CVE-2025-43369

cve-icon Vulnrichment

Updated: 2025-09-16T13:44:35.439Z

cve-icon NVD

Status : Modified

Published: 2025-09-15T23:15:38.480

Modified: 2025-11-03T19:16:05.093

Link: CVE-2025-43369

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T18:45:15Z

Weaknesses