CVE-2025-24268
5.5 MEDIUMA parsing issue in the handling of directory paths was addressed with improved path validation
Published: 2026-06-11 · Last updated: 2026-06-11
Severity and scoring
- CVSS
- 5.5 MEDIUM
- Vector
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
- CWE
- CWE-22
Description
A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Sequoia 15.4. An app may be able to access sensitive user data.
Source: NVD
References
Related CVEs
Same CWE
- CVE-2026-47368 — A malicious actor with access to the network could exploit a Path Traversal vulnerability found in certain devices running UniFi OS to ob... (8.6 HIGH)
- CVE-2026-45171 — Incomplete input validation and improperly configured folder permissions within Idira Privileged Session Manager (PSM) versions prior to ...
- CVE-2026-49982 — tmp is a temporary file and directory creator for node.js (8.2 HIGH)
- CVE-2026-44705 — tmp is a temporary file and directory creator for node.js
- CVE-2026-53777 — Perry before 0.5.1159 contains a path traversal vulnerability that allows a malicious build server to write arbitrary content to any loca... (8.1 HIGH)