CVE-2025-24115

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jan 27, 2025

Updated: Jan 28, 2025

CWE ID 125

Summary

CVE-2025-24115 is a path handling vulnerability that has been addressed in the latest updates of macOS Ventura 13.7.3, macOS Sequoia 15.3, and macOS Sonoma 14.7.3. Previously, an application could bypass its sandbox and read files outside of its intended access, posing a potential security risk. The issue has been rectified through enhanced validation measures.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

MacOS

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/2ifPlo
https://www.cve.org/CVERecord?id=CVE-2025-24115
https://nvd.nist.gov/vuln/detail/CVE-2025-24115

Back to Vulnerability Database