CVE-2025-43390 | THREATINT

Description

A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions. This issue is fixed in macOS Sequoia 15.7.2. An app may be able to access user-sensitive data.

PUBLISHED Reserved 2025-04-16 | Published 2025-11-04 | Updated 2025-11-04 | Assigner apple

Problem types

An app may be able to access user-sensitive data

Product status

Any version before 15.7

affected

References

support.apple.com/en-us/125635

cve.org (CVE-2025-43390)

nvd.nist.gov (CVE-2025-43390)

Download JSON