PT-2025-31320 · Apple · Apple Macos
Mickey Jin
+1
·
Published
2025-07-29
·
Updated
2025-07-30
·
CVE-2025-43245
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
macOS versions prior to 15.6
macOS versions prior to 14.7.7
macOS versions prior to 13.7.7
Description
A flaw allows an application to potentially access protected user data due to a downgrade issue. This issue was addressed with additional code-signing restrictions.
Recommendations
Update to macOS version 15.6 or later.
Update to macOS version 14.7.7 or later.
Update to macOS version 13.7.7 or later.
Fix
Authentication Bypass by Spoofing
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Apple Macos