PT-2025-31316 · Apple+9 · Apple Macos+9

Syarif Muhammad Sajjad

Published

2025-07-29

Updated

2025-11-25

CVE-2025-43240

CVSS v3.1

6.2

Medium

Vector

AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions macOS versions prior to 15.6

Description A logic issue existed due to insufficient checks, potentially leading to incorrect association of a download’s origin.

Recommendations Update to macOS version 15.6.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-703

Related Identifiers

ALSA-2025:13780

ALSA-2025:13782

BDU:2025-11471

CESA-2025_13780

CVE-2025-43240

DLA-4276-1

DSA-5978-1

INFSA-2025_13780

INFSA-2025_13782

MGASA-2025-0313

RHSA-2025:13780

RHSA-2025:13782

RHSA-2025:14421

RHSA-2025:14422

RHSA-2025:14423

RHSA-2025:14432

RHSA-2025:14433

RHSA-2025:14434

RHSA-2025:14486

RHSA-2025_13780

RHSA-2025_13782

SUSE-SU-2025:02765-1

SUSE-SU-2025:02766-1

SUSE-SU-2025:02777-1

SUSE-SU-2025:02973-1

SUSE-SU-2025_02765-1

SUSE-SU-2025_02766-1

SUSE-SU-2025_02777-1

SUSE-SU-2025_02973-1

USN-7702-1

Affected Products

Almalinux

Astra Linux

Centos

Debian

Linuxmint

Apple Macos

Red Hat

Rocky Linux

Suse

Ubuntu

PT-2025-31316 · Apple+9 · Apple Macos+9

CVE-2025-43240

Weakness Enumeration

Related Identifiers

Affected Products

References · 112