CVE-2025-43512

HIGH EXPLOITED

macOS Tahoe <26.2 - Privilege Escalation

Title source: llm

Exploitation Summary

CVE-2025-43512 has been observed exploited in the wild (reported by VulnCheck KEV).

Description

A logic issue was addressed with improved checks. This issue is fixed in iOS 18.7.3 and iPadOS 18.7.3, macOS Sequoia 15.7.3, macOS Sonoma 14.8.3, macOS Tahoe 26.2. An app may be able to elevate privileges.

References (4)

Core 4

Core References

Release Notes, Vendor Advisory

https://support.apple.com/en-us/125887

Release Notes, Vendor Advisory

https://support.apple.com/en-us/125888

Vendor Advisory

https://support.apple.com/en-us/125885

Vendor Advisory

https://support.apple.com/en-us/125886

Scores

CVSS v3 7.8

EPSS 0.0017

EPSS Percentile 7.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

VulnCheck KEV 2026-04-07

CWE

CWE-269

Status published

Products (5)

Apple/iOS and iPadOS < 18.7.3

apple/macos < 14.8.3

Apple/macOS < 14.8.3

Apple/macOS < 15.7.3

Apple/macOS < 26.2

Published Dec 12, 2025

Tracked Since Feb 18, 2026