CVE-2025-31250

Published May 12, 2025

Last updated a month ago

CVSS medium 5.5

Overview

Description
An information disclosure issue was addressed with improved privacy controls. This issue is fixed in macOS Sequoia 15.5. An app may be able to access sensitive user data.
Source
product-security@apple.com
NVD status
Analyzed

Risk scores

CVSS 3.1

Type
Secondary
Base score
5.5
Impact score
3.6
Exploitability score
1.8
Vector string
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Severity
MEDIUM

Weaknesses

134c704f-9b21-4f2e-91b3-4a467353bcc0
CWE-200

Social media

Hype score
Not currently trending

  1. 🔴 #macOS, Information Disclosure, #CVE-2025-31250 (Critical) https://t.co/QHQHiTA6jD

    @dailycve

    27 May 2025

    9 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. macOSに深刻なTCC脆弱性(CVE-2025-31250)が見つかったよ。ユーザーが許可を与えたつもりのアプリと別のアプリが許可を悪用可能。最新バージョン以外の修正なしでセキュリティ論争勃発中 https://t.co/gw26KkibEZ

    @techandeco4242

    13 May 2025

    10 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. CVE-2025-31250 An information disclosure issue was addressed with improved privacy controls. This issue is fixed in macOS Sequoia 15.5. An app may be able to access sensitive user d… https://t.co/naCs6KCNhy

    @CVEnew

    12 May 2025

    303 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. Can You Really Trust That Permission Pop-Up on macOS? (CVE-2025-31250) #HackerNews https://t.co/AiWupyCUrY

    @hackernewstop5

    12 May 2025

    18 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  5. Can You Really Trust That Permission Pop-Up on macOS? (CVE-2025-31250) https://t.co/UPfMGgoF9v 3

    @cevaboyz

    12 May 2025

    15 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

Configurations

References

Sources include official advisories and independent security research.