What is the CVSS score of CVE-2025-65843?

CVE-2025-65843 has a CVSS 3.1 base score of 7.7 (High). CVSS vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N. EPSS exploitation probability: 0.0%.

Which versions of Aquarius are affected by CVE-2025-65843?

Aquarius Desktop 3.0.069 for macOS contains a critical file handling flaw that allows local attackers to access or modify sensitive files on affected systems.

Is there a public PoC exploit available for CVE-2025-65843?

Yes, a public proof-of-concept exploit is available for CVE-2025-65843. Prioritise patching immediately. EPSS: 0.0%.

How to fix or mitigate CVE-2025-65843?

Within 24 hours: Identify and inventory all macOS systems running Aquarius Desktop 3.0.069 and isolate affected machines from production networks if possible. Within 7 days: Disable the support data archive generation feature across all affected installations through configuration management or group policy; implement file system monitoring on ~/Library/Logs/Aquarius directories to detect suspicious symbolic link creation. Within 30 days: Contact Aquarius vendor for patch availability and timeline; evaluate alternative solutions or upgraded versions; plan and execute full remediation across the organization once patches are available.

Aquarius CVE-2025-65843

EUVD-2025-200991 HIGH

Improper Link Resolution Before File Access (CWE-59)

2025-12-03 cve@mitre.org

Privilege Escalation Apple Aquarius macOS

7.7

CVSS 3.1 · NVD

Severity by source

NVD PRIMARY

7.7 HIGH

AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

None

Lifecycle Timeline

EUVD ID Assigned

Mar 15, 2026 - 16:14 euvd

EUVD-2025-200991

Analysis Generated

Mar 15, 2026 - 16:14 vuln.today

PoC Detected

Dec 18, 2025 - 20:34 vuln.today

Public exploit code

CVE Published

Dec 03, 2025 - 17:15 nvd

HIGH 7.7

DescriptionCVE.org

Aquarius Desktop 3.0.069 for macOS contains an insecure file handling vulnerability in its support data archive generation feature. The application follows symbolic links placed inside the ~/Library/Logs/Aquarius directory and treats them as regular files. When building the support ZIP, Aquarius recursively enumerates logs using a JUCE directory iterator configured to follow symlinks, and later writes file data without validating whether the target is a symbolic link. A local attacker can exploit this behavior by planting symlinks to arbitrary filesystem locations, resulting in unauthorized disclosure or modification of arbitrary files. When chained with the associated HelperTool privilege escalation issue, root-owned files may also be exposed.

Analysis

Technical ContextAI

Privilege escalation allows a low-privileged user or process to gain elevated permissions beyond what was originally authorized. This vulnerability is classified as Improper Link Resolution Before File Access (CWE-59).

RemediationAI

Apply the principle of least privilege. Keep systems patched. Monitor for suspicious privilege changes. Use mandatory access controls (SELinux, AppArmor).

CVE-2025-65843 vulnerability details – vuln.today

Back

Aquarius CVE-2025-65843

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

Analysis

Technical ContextAI

RemediationAI

Share

External POC / Exploit Code