EUVD-2025-209940CVSS VectorNVD
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Lifecycle Timeline
5DescriptionNVD
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. An app may be able to modify protected parts of the file system.
AnalysisAI
Incorrect permission assignment (CWE-732) in Apple macOS allows a locally-running app to modify protected parts of the file system without authorization. Affected are macOS Sonoma prior to 14.8, macOS Sequoia prior to 15.7, and macOS Tahoe prior to 26, covering three active macOS release trains simultaneously. The CVSS vector (AV:L/AC:L/PR:L/UI:N, I:H) confirms that a low-privileged local app can achieve high-integrity writes to restricted file system regions with no user interaction required; no public exploit has been identified at time of analysis.
Technical ContextAI
CWE-732 (Incorrect Permission Assignment for Critical Resource) describes a class of flaws where the operating system grants overly permissive access to resources that should be tightly controlled. In macOS, protected file system regions include areas guarded by System Integrity Protection (SIP) and other OS-enforced permission boundaries. The vulnerability arose because the permission policy governing certain protected paths did not apply sufficient restrictions to app-level access. Apple addressed this by adding additional restrictions to the relevant access controls. The CPE string (cpe:2.3:a:apple:macos:*:*:*:*:*:*:*:*) confirms the flaw is in the macOS application layer rather than firmware or a third-party component. The CVSS scope is unchanged (S:U), indicating the impact is contained within the affected component rather than crossing privilege boundaries to other system components.
RemediationAI
The primary fix is to update to macOS Sonoma 14.8, macOS Sequoia 15.7, or macOS Tahoe 26, all of which include the additional permission restrictions that resolve this vulnerability. Patch availability is confirmed by Apple's vendor advisories at https://support.apple.com/en-us/125110, https://support.apple.com/en-us/125111, and https://support.apple.com/en-us/125112. No specific workaround is documented by Apple. As a compensating control prior to patching, administrators can restrict the installation and execution of untrusted third-party apps via MDM policies or Gatekeeper enforcement, which limits the attack surface by reducing the pool of apps that could exploit the flaw; note that this does not eliminate risk from already-installed or legitimately-signed malicious apps. Enforcing least-privilege app sandboxing policies via macOS MDM profiles reduces exposure further but may affect app functionality.
More from same product – last 7 days
SQL injection in Pimcore's CustomReportsBundle (versions ≤ 12.3.5) lets an authenticated user holding the reports_config
Arbitrary code execution in Docker Model Runner's vllm-metal inference backend on macOS allows any container on the Dock
Arbitrary code execution in Docker Desktop's Model Runner on macOS allows any container on the Docker network to escape
Local privilege escalation in Apple macOS allows a malicious app already running with low privileges to elevate to root
Local privilege escalation in Canonical Multipass for macOS before 1.16.3 allows a low-privileged local user to obtain r
Share
External POC / Exploit Code
Leaving vuln.today