CVE-2025-43358

📊 8.8 HIGH⚡ 0.0%🎯 0 exploits

📅 Published Sep 15, 2025

📋 Status: Analyzed

A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, iOS 18.7 and iPadOS 18.7, macOS Tahoe 26, iOS 26 and iPadOS 26. A shortcut may be able to bypass sandbox restrictions.

CVSS v3.1 • 134c704f-9b21-4f2e-91b3-4a467353bcc0

🎯 Affected Products & Systems

4 product configurations affected

Filter by type:

Type	Vendor	Product	Version Range	Status	CPE String
💻OS	apple	ipados	< 18.7	Vulnerable	cpe:2.3:o:apple:ipados::::::::
💻OS	apple	iphone os	< 18.7	Vulnerable	cpe:2.3:o:apple:iphone_os::::::::
💻OS	apple	macos	≥ 14.0 ∧ < 14.8	Vulnerable	cpe:2.3:o:apple:macos::::::::
💻OS	apple	macos	≥ 15.0 ∧ < 15.7	Vulnerable	cpe:2.3:o:apple:macos::::::::

💻

apple / ipados

Operating System

Vulnerable

Version: < 18.7

CPE:

cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*

💻

apple / iphone os

Operating System

Vulnerable

Version: < 18.7

CPE:

cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*

💻

apple / macos

Operating System

Vulnerable

Version: ≥ 14.0 ∧ < 14.8

CPE:

cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*

💻

apple / macos

Operating System

Vulnerable

Version: ≥ 15.0 ∧ < 15.7

CPE:

cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*

Metrics

8.8 HIGHCVSS v3.1134c704f-9b21-4f2e-91b3-4a467353bcc0

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Attack Vector:

LOCAL

Complexity:

LOW

Privileges:

LOW

User Interaction:

NONE

Confidentiality:

HIGH

Integrity:

HIGH

Availability:

HIGH

Scope:

CHANGED

🔍 Technical Details

Analysis Status

Analyzed

CVSS Details

8.8 (HIGH)v3.1

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

EPSS Details

0.0% (Minimal)0.8th percentile

Last updated: Oct 30, 2025

Exploitation probability within 30 days

Published Date

Sep 15, 2025 (1 month ago)

Last Modified

Sep 17, 2025 (1 month ago)

Security Weaknesses1

CWE-862

References6

NVDgeneralgeneral+3