CVE-2025-43195

CVSS 5.5 MEDIUMEPSS 0.2%CWE-20

An issue existed in the handling of environment variables. This issue was addressed with improved validation. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may be able to access sensitive user data.

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Productos afectados

Apple · macOS

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://seclists.org/fulldisclosure/2025/Jul/32 http://seclists.org/fulldisclosure/2025/Jul/33 http://seclists.org/fulldisclosure/2025/Jul/34 https://support.apple.com/en-us/124149 https://support.apple.com/en-us/124150 https://support.apple.com/en-us/124151