CVE-2025-43220

CVE

Critical

This issue was addressed with improved validation of symlinks. This issue is fixed in iPadOS 17.7.9, macOS Sequoia 15.6, macOS Sonoma 14.7.…

CVSS

9.8

Critical

EPSS

0.01

p77

Published

2025-01-01

Updated

2025-01-01

Description

This issue was addressed with improved validation of symlinks. This issue is fixed in iPadOS 17.7.9, macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may be able to access protected user data.

Tags · CWE

Pre-auth

CWE-59

CAPEC-17

CAPEC-35

CAPEC-76

CAPEC-132

Affected products

Ipados < 17.7.9Macos < 13.7.7Macos 14.0–14.7.7Macos 15.0–15.6

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Timeline

2025-01-01

Published

2025-01-01

Updated

CVSS 3.1 breakdown

Attack Vector

AV: N

Network (N)

Attack Complexity

AC: L

Low (L)

Privileges Required

PR: N

None (N)

User Interaction

UI: N

None (N)

Scope

S: U

Unchanged (U)

Confidentiality Impact

C: H

High (H)

Integrity Impact

I: H

High (H)

Availability Impact

A: H

High (H)

Exploit indicators

EPSS

0.010 · p77

Known exploited (KEV)

MITRE ATT&CK

Inferred via CAPEC

T1027.006HTML Smuggling

└ via CAPEC-35 · CWE-59

T1027.009Embedded Payloads

└ via CAPEC-35 · CWE-59

T1547.009Shortcut Modification

└ via CAPEC-132 · CWE-59

T1564.009Resource Forking

└ via CAPEC-35 · CWE-59

T1574.005Executable Installer File Permissions Weakness

└ via CAPEC-17 · CWE-59

T1574.010Services File Permissions Weakness

└ via CAPEC-17 · CWE-59

Known exploits — Сканер-ВС

No Сканер-ВС checks registered for this vulnerability yet.

Affected software

Product	Vendor	Status
ipados	*	Tracked
macos	*	Tracked

Source databases

CVE

Related vulnerabilities

BDU:2025-09432

External references

https://support.apple.com/en-us/124148@https://support.apple.com/en-us/124149@https://support.apple.com/en-us/124150@https://support.apple.com/en-us/124151@http://seclists.org/fulldisclosure/2025/Jul/31@http://seclists.org/fulldisclosure/2025/Jul/32@http://seclists.org/fulldisclosure/2025/Jul/33@http://seclists.org/fulldisclosure/2025/Jul/34