Improper Authorization
CVE-2025-31249
Summary
A logic issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.5. An app may be able to access sensitive user data.
- LOW
- NETWORK
- LOW
- UNCHANGED
- NONE
- LOW
- HIGH
- NONE
CWE-285 - Improper Authorization
The software does not perform or incorrectly performs an authorization check when an actor attempts to access a resource or perform an action.
References
Advisory Timeline
- Published
