CVE-2025-30465

CRITICAL

macOS Ventura <13.7.5 - Info Disclosure

Title source: llm
STIX 2.1

Description

A permissions issue was addressed with improved validation. This issue is fixed in iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sequoia 15.7.2, macOS Sonoma 14.7.5, macOS Sonoma 14.8.2, macOS Tahoe 26.1, macOS Ventura 13.7.5. A shortcut may be able to access files that are normally inaccessible to the Shortcuts app.

References (11)

Scores

CVSS v3 9.8
EPSS 0.0050
EPSS Percentile 66.0%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact total

Details

CWE
CWE-276
Status published
Products (9)
apple/ipados < 17.7.6
Apple/iPadOS < 17.7.6
apple/macos < 13.7.5
Apple/macOS < 13.7.5
Apple/macOS < 14.7.5
Apple/macOS < 14.8.2
Apple/macOS < 15.4
Apple/macOS < 15.7.2
Apple/macOS < 26.1
Published Mar 31, 2025
Tracked Since Feb 18, 2026