CVE-2025-46293

5.5 MEDIUM

This issue was addressed with improved handling of symlinks

Published: 2026-06-11 · Last updated: 2026-06-11

Severity and scoring

CVSS: 5.5 MEDIUM
Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
CWE: CWE-59

Description

This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sequoia 15.4. An app may be able to access protected user data.

Source: NVD

References

Related CVEs

Same CWE

CVE-2026-45384 — bit7z is a cross-platform C++ static library that allows the compression/extraction of archive files (6.1 MEDIUM)
CVE-2026-53476 — A flaw was found in assisted-migration-agent (9.6 CRITICAL)
CVE-2026-11853 — Debusine is an integrated solution to build, distribute and maintain a Debian-based distribution (6.5 MEDIUM)
CVE-2026-11837 — A local privilege escalation vulnerability was found in the ansible.posix authorized_key module (7.3 HIGH)
CVE-2026-50511 — Improper link resolution before file access ('link following') in Microsoft PC Manager allows an authorized attacker to elevate privilege... (7.8 HIGH)