← Back to CVEs
CVE-2025-31247
HIGH7.5
Description
A logic issue was addressed with improved state management. This issue is fixed in macOS Sequoia 15.5, macOS Sonoma 14.7.6, macOS Ventura 13.7.6. An attacker may gain access to protected parts of the file system.
CVE Details
CVSS v3.1 Score7.5
SeverityHIGH
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Attack VectorNETWORK
ComplexityLOW
Privileges RequiredNONE
User InteractionNONE
Published5/12/2025
Last Modified4/2/2026
Sourcenvd
Honeypot Sightings0
Affected Products
apple:macos
Weaknesses (CWE)
CWE-284
References
https://support.apple.com/en-us/122716(product-security@apple.com)
https://support.apple.com/en-us/122717(product-security@apple.com)
https://support.apple.com/en-us/122718(product-security@apple.com)
http://seclists.org/fulldisclosure/2025/May/7(af854a3a-2127-422b-91ae-364da2661108)
http://seclists.org/fulldisclosure/2025/May/8(af854a3a-2127-422b-91ae-364da2661108)
http://seclists.org/fulldisclosure/2025/May/9(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.