CVE-2025-31268

CVE-2025-31268 is a permissions vulnerability in macOS that could allow an app to access protected user data. The root cause is a permissions issue that was addressed with additional restrictions in the affected operating system versions [1][3][4].

An attacker would need to have an app installed on the system to exploit this vulnerability. No user interaction beyond normal app execution is required, and the attack surface is local, meaning the app must be running on the target Mac. The exact mechanism of the permissions bypass is not publicly detailed, but it involves insufficient restrictions on accessing protected data.

Successful exploitation could lead to unauthorized access to sensitive user information, such as documents, contacts, or other data protected by macOS privacy controls. The impact is limited to data exposure; no system compromise or code execution is indicated.

Apple has addressed this issue in macOS Sequoia 15.7, macOS Sonoma 14.8, and macOS Tahoe 26. Users are advised to update to the latest available version for their Mac model to mitigate the risk [1][3][4].