QSearchQSearch

CVE-2025-43407

7.8 HIGH

This issue was addressed with improved entitlements

Published: 2025-11-04 · Last updated: 2026-06-11

Severity and scoring

CVSS
7.8 HIGH
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CWE
CWE-284

Affected products

VendorProduct
appleipados, iphone_os, macos

Description

This issue was addressed with improved entitlements. This issue is fixed in iOS 18.7.2 and iPadOS 18.7.2, iOS 26.1 and iPadOS 26.1, macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS Tahoe 26.1, tvOS 26.1, visionOS 26.1. An app may be able to break out of its sandbox.

Source: NVD

References

Related CVEs

Same vendor

  • CVE-2025-46315 A permissions issue was addressed with additional restrictions (7.5 HIGH)
  • CVE-2025-46313 A logging issue was addressed with improved data redaction (5.5 MEDIUM)
  • CVE-2025-46308 An authorization issue was addressed with improved state management (5.3 MEDIUM)
  • CVE-2025-46293 This issue was addressed with improved handling of symlinks (5.5 MEDIUM)
  • CVE-2025-43339 An access issue was addressed with additional sandbox restrictions (5.5 MEDIUM)

Same CWE

  • CVE-2026-47261 Wasmtime is a runtime for WebAssembly (7.5 HIGH)
  • CVE-2026-50892 Incorrect access control in the "Let's Encrypt" certificate download endpoint of Nginx Proxy Manager v2.14.0 allows authenticated attacke... (6.5 MEDIUM)
  • CVE-2026-50891 Incorrect access control in the /admin/api/config component of Filestash v0.4.0 allows attackers to escalate privileges via sending a cra... (8.1 HIGH)
  • CVE-2026-50886 Incorrect access control in the webhook management component of Project Firefly III v6.5.9 allows attackers to scan internal resources vi... (9.1 CRITICAL)
  • CVE-2026-50885 Incorrect access control in the share-based read endpoints of Sismics Docs (Teedy) v1.11 allow unauthorized attackers to access sensitive... (7.5 HIGH)