CVE-2025-24281 — Sensitive Information Exposure in Apple Macos

Severity

5.5MEDIUMNVD

EPSS

0.1%

top 76.32%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedMar 31

Latest updateApr 1

Description

This issue was addressed with improved data protection. This issue is fixed in macOS Sequoia 15.4. An app may be able to access sensitive user data.

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6

▶NVDapple/macos< 15.4

GHSA

GHSA-6x3m-r98v-pgc4: This issue was addressed with improved data protection↗2025-04-01

▶

Apple

CVE-2025-24281: macOS Sequoia 15.4↗2025-03-31

▶