AI description
CVE-2025-31191 is a vulnerability that affects multiple Apple operating systems, including macOS Ventura, tvOS, iOS, iPadOS, macOS Sequoia, and macOS Sonoma. It involves an issue where an app may be able to access sensitive user data due to state management issues. The vulnerability was addressed by Apple through improved state management in the security updates released on March 31, 2025. It was discovered that the exploit could allow an attacker to delete and replace a keychain entry used to sign security-scoped bookmarks to ultimately escape the App Sandbox without user interaction.
- Description
- This issue was addressed through improved state management. This issue is fixed in macOS Ventura 13.7.5, tvOS 18.4, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to access sensitive user data.
- Source
- product-security@apple.com
- NVD status
- Modified
- Products
- ipados, iphone_os, macos, tvos
CVSS 3.1
- Type
- Secondary
- Base score
- 5.5
- Impact score
- 3.6
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
- Severity
- MEDIUM
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-200
- Hype score
- Not currently trending
macOS: Part2 - Sandbox Escape (en) https://t.co/Z1WADp3FGQ Hi, this is clalxk. In Part 2 of my macOS security series, I dive into Sandbox Escape techniques, covering both historical flaws like CVE-2022-26696 and the newly discovered CVE-2025-31191. This post walks through how
@minacrissDev_
12 Aug 2025
379 Impressions
1 Retweet
5 Likes
1 Bookmark
0 Replies
0 Quotes
[Research] macOS: Part2 - Sandbox Escape (en) https://t.co/AiM7TmNXvl Hi, this is clalxk. In Part 2 of my macOS security series, I dive into Sandbox Escape techniques, covering both historical flaws like CVE-2022-26696 and the newly discovered CVE-2025-31191. This post walks h
@hackyboiz
8 Aug 2025
4462 Impressions
15 Retweets
59 Likes
39 Bookmarks
0 Replies
1 Quote
#Vulnerability #KeychainExploit CVE-2025-31191: Microsoft Exposes macOS Vulnerability Allowing App Sandbox Escape https://t.co/DGuu2SIsEK
@Komodosec
27 Jun 2025
11 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2025-31191: Vulnerability in macOS allows exit from sandbox] Microsoft experts have discovered a vulnerability CVE-2025-31191 in macOS, which allows you to bypass the application isolation mechanism (sandbox) through the security-scoped bookmarks mechanism. The https://t.c
@NGT_Cybercrime
7 May 2025
49 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Analyzing CVE-2025-31191: A macOS security-scoped bookmarks-based sandbox escape: https://t.co/mGy5MOxMVU #macOS #vulnerability #infosec #cve #sandbox #sbx
@blackstormsecbr
5 May 2025
1693 Impressions
8 Retweets
10 Likes
5 Bookmarks
0 Replies
0 Quotes
Команда Microsoft Threat Intelligence рассказала об опасной уязвимости в macOS, позволяющей обходить App Sandbox — ключевую защиту операционной системы. Уязвимость получил
@Anti_Malware
5 May 2025
4 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-31191: Microsoft Exposes macOS Vulnerability Allowing App Sandbox Escape https://t.co/7tTfX27UMs
@Dinosn
5 May 2025
2462 Impressions
7 Retweets
18 Likes
4 Bookmarks
0 Replies
0 Quotes
Originally from: MS Threat Intel: Analyzing CVE-2025-31191: A macOS security-scoped bookmarks-based sandbox escape https://t.co/8ZJCCHk1Iw ( :-{ı▓ #CTI #cybersecurity #cyberresearch https://t.co/EYKap2AoXo
@Cyb3rR3s34rch
2 May 2025
8 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Analyzing CVE-2025-31191: A #macOS #security-scoped bookmarks-based #sandbox_escape https://t.co/NZSvWGjVdr https://t.co/5rSVcsKGfe
@omvapt
2 May 2025
23 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🐧 macOS faces a critical security flaw, CVE-2025-31191, letting attackers escape the App Sandbox! It's like a game of hide and seek, but we prefer the seekers to be the good guys! Stay safe out there! #WindowsForum #macOS #SecurityFlaw https://t.co/c2j54T1MXM
@windowsforum
1 May 2025
16 Impressions
2 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Microsoft uncovered a vulnerability, tracked as CVE-2025-31191, in macOS that could allow specially crafted codes to escape the App Sandbox without user interaction and run unrestricted on systems. https://t.co/Twf9ezDSKk
@MsftSecIntel
1 May 2025
11768 Impressions
28 Retweets
70 Likes
16 Bookmarks
2 Replies
1 Quote
🔴 #macOS/#iOS, Sensitive Data Exposure, #CVE-2025-31191 (Critical) https://t.co/skoQ2jTdXC
@dailycve
4 Apr 2025
5 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6B3450F7-7B4A-46CE-A6E0-BBE6569F2EBF",
"versionEndExcluding": "18.4"
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0D9C73F9-FEF4-4FC1-B83D-56566AD35990",
"versionEndExcluding": "18.4"
},
{
"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "345CC17A-CCA4-4B82-A645-A5226A8DAEBB",
"versionEndExcluding": "13.7.5"
},
{
"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D05DCA25-A1A0-4AEA-9F31-952803114EE2",
"versionEndExcluding": "14.7.5",
"versionStartIncluding": "14.0"
},
{
"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1320B815-0457-4276-83B9-AFAFDAF17EDA",
"versionEndExcluding": "15.4",
"versionStartIncluding": "15.0"
},
{
"criteria": "cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8C61CCC2-87D3-4A3A-837B-63C48299A7AD",
"versionEndExcluding": "18.4"
}
],
"operator": "OR"
}
]
}
]