{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-43417", "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c", "state": "PUBLISHED", "assignerShortName": "apple", "dateReserved": "2025-04-16T15:24:37.123Z", "datePublished": "2026-02-11T22:58:31.572Z", "dateUpdated": "2026-04-02T18:18:09.426Z"}, "containers": {"cna": {"problemTypes": [{"descriptions": [{"lang": "en", "description": "An app may be able to access user-sensitive data"}]}], "affected": [{"vendor": "Apple", "product": "macOS", "versions": [{"version": "0", "status": "affected", "lessThan": "14.8.4", "versionType": "custom"}, {"version": "0", "status": "affected", "lessThan": "26.2", "versionType": "custom"}]}], "descriptions": [{"lang": "en", "value": "A path handling issue was addressed with improved logic. This issue is fixed in macOS Sonoma 14.8.4, macOS Tahoe 26.2. An app may be able to access user-sensitive data."}], "references": [{"url": "https://support.apple.com/en-us/125886"}, {"url": "https://support.apple.com/en-us/126350"}], "providerMetadata": {"orgId": "286789f9-fbc2-4510-9f9a-43facdede74c", "shortName": "apple", "dateUpdated": "2026-04-02T18:18:09.426Z"}}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-22", "lang": "en", "description": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.5, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2026-02-12T16:47:25.921907Z", "id": "CVE-2025-43417", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-12T16:47:54.266Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.5, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2025-43417", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-02-12T16:47:25.921907Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-22", "description": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-12T16:46:40.589Z"}}], "cna": {"affected": [{"vendor": "Apple", "product": "macOS", "versions": [{"status": "affected", "version": "unspecified", "lessThan": "14.8", "versionType": "custom"}]}], "references": [{"url": "https://support.apple.com/en-us/126350"}], "descriptions": [{"lang": "en", "value": "A path handling issue was addressed with improved logic. This issue is fixed in macOS Sonoma 14.8.4. An app may be able to access user-sensitive data."}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "An app may be able to access user-sensitive data"}]}], "providerMetadata": {"orgId": "286789f9-fbc2-4510-9f9a-43facdede74c", "shortName": "apple", "dateUpdated": "2026-02-11T22:58:31.572Z"}}}, "cveMetadata": {"cveId": "CVE-2025-43417", "state": "PUBLISHED", "dateUpdated": "2026-02-12T16:47:54.266Z", "dateReserved": "2025-04-16T15:24:37.123Z", "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c", "datePublished": "2026-02-11T22:58:31.572Z", "assignerShortName": "apple"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*", "matchCriteriaId": "8D9F0DB6-C9A6-47C1-B131-0284A3989EF4", "versionEndExcluding": "14.8.4", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A path handling issue was addressed with improved logic. This issue is fixed in macOS Sonoma 14.8.4, macOS Tahoe 26.2. An app may be able to access user-sensitive data."}, {"lang": "es", "value": "Un problema de manejo de rutas se abord\u00f3 con l\u00f3gica mejorada. Este problema est\u00e1 corregido en macOS Sonoma 14.8.4. Una aplicaci\u00f3n podr\u00eda acceder a datos sensibles del usuario."}], "id": "CVE-2025-43417", "lastModified": "2026-04-02T19:20:43.050", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 3.6, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2026-02-11T23:16:02.200", "references": [{"source": "product-security@apple.com", "url": "https://support.apple.com/en-us/125886"}, {"source": "product-security@apple.com", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://support.apple.com/en-us/126350"}], "sourceIdentifier": "product-security@apple.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,14.8)"}}], "product": "macos", "vendor": "apple"}], "analysis": {"en": {"generated_at": "2026-04-22T20:00:18.478967+00:00", "value": {"mitigation_remediation": ["Upgrade macOS to version 14.8.4 of Sonoma or 26.2 of Tahoe or later, which contain the corrected path\u2011handling logic.", "If an immediate upgrade is not possible, restrict the installation of untrusted or third\u2011party applications, and enforce app\u2011sandboxing controls to prevent filesystem traversal.", "Monitor system logs and application behavior for anomalous file\u2011access attempts that might indicate path traversal attempts, and investigate any such events promptly."], "summary": {"action": "Update macOS", "impact": "Potential unauthorized access to user\u2011sensitive data"}, "threat_synthesis": {"affected_systems": "Apple macOS is affected, specifically versions earlier than macOS Sonoma 14.8.4 and macOS Tahoe 26.2. Any system running these revisions that allows third\u2011party applications is potentially vulnerable.", "description_and_impact": "This vulnerability is a path handling issue in macOS that permits an application to resolve file paths leading to user\u2011sensitive data. The flaw corresponds to CWE\u201122 and can result in a confidentiality breach if an app accesses files it should not normally read. The vulnerability does not grant execution privileges or system takeover, but it enables read access to protected resources.", "risk_and_exploitability": "The CVSS score of 5.5 rates the vulnerability as moderate, while the EPSS score of less than 1% indicates a very low probability that it will be exploited in the wild. The issue is not listed in the CISA KEV catalog, implying no known active exploitation. The likely attack vector is a local or remote application that can provide or manipulate file paths, but the description does not confirm an active exploit. Therefore, the risk is moderate to low and mainly relevant to environments that require strict data protection."}}}}, "created": "2026-02-12T09:02:40.727866+00:00", "title": "macOS Path Traversal Allows App Access to User\u2011Sensitive Data", "updated": "2026-04-22T20:15:20.522504+00:00", "vendors": ["apple", "apple$PRODUCT$macos"]}