CVE-2025-24181

CVE-2025-24181 is a permissions issue, classified under CWE-862 (Missing Authorization), that allows an app to access protected user data on affected macOS systems. The vulnerability affects macOS Sequoia prior to version 15.4, macOS Sonoma prior to 14.7.5, and macOS Ventura prior to 13.7.5. It received a CVSS v3.1 base score of 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H), indicating critical severity due to its network accessibility, low attack complexity, lack of required privileges or user interaction, and high impacts on confidentiality, integrity, and availability. The issue was published on 2025-03-31.

Attackers can exploit this vulnerability remotely over the network without privileges or user interaction by leveraging a malicious app. Successful exploitation enables the app to bypass restrictions and access sensitive protected user data, potentially leading to unauthorized disclosure, modification, or disruption of system resources as reflected in the high CVSS impact metrics.

Apple security advisories detail the fix through additional permissions restrictions in macOS Sequoia 15.4, macOS Sonoma 14.7.5, and macOS Ventura 13.7.5. Relevant updates are documented in support articles at https://support.apple.com/en-us/122373, https://support.apple.com/en-us/122374, and https://support.apple.com/en-us/122375, with further discussion in Full Disclosure mailing list posts at http://seclists.org/fulldisclosure/2025/Apr/10 and http://seclists.org/fulldisclosure/2025/Apr/8. Practitioners should prioritize updating affected systems to mitigate the risk.