5.5
CVE-2025-43403
- EPSS 0.17%
- Veröffentlicht 11.02.2026 22:58:17
- Zuletzt bearbeitet 26.05.2026 22:16:41
- Quelle product-security@apple.com
- CVE-Watchlists
- Unerledigt
An authorization issue was addressed with improved state management. This issue is fixed in macOS Sequoia 15.7.4, macOS Sonoma 14.8.4, macOS Tahoe 26. An app may be able to access sensitive user data.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.17% | 0.068 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
|
CWE-285 Improper Authorization
The product does not perform or incorrectly performs an authorization check when an actor attempts to access a resource or perform an action.
https://support.apple.com/en-us/125110
https://support.apple.com/en-us/126349
https://support.apple.com/en-us/126350