CVE-2025-43479

Root

Cause CVE-2025-43479 is a permissions vulnerability in macOS that arises from a logic flaw in the operating system's access controls. The official description notes that the issue was addressed with additional restrictions, while the advisory for macOS Tahoe specifies that the problem was corrected with improved checks [1]. The advisories for macOS Sequoia and Sonoma further describe a logic issue that was resolved with improved checks [2][3].

Exploitation

An attacker would need to convince a user to run a malicious application on an affected Mac. No special privileges or network position are mentioned in the advisories, suggesting that the attack vector is local and user-assisted. The prerequisite is that the app must be executed on a vulnerable version of macOS prior to the fixes released on November 3, 2025.

Impact

Successful exploitation could allow that app to access sensitive user data without proper authorization. The impact is limited to data confidentiality, and Apple rates the severity as Medium with a CVSS v3 base score of 5.5, reflecting a moderate risk to user privacy.

Mitigation

Apple has released patches by updating macOS to Sequoia 15.7.2, Sonoma 14.8.2, and Tahoe 26.1. Users should apply these updates through Software Update or by downloading the full installers from Apple. There is no indication that this vulnerability has been exploited in the wild or included in any government catalog (e.g., KEV).