CVE Database · CVE-2025-24268
CVSS v3.1
5.5
EPSS
0.14%
Published
Jun 11, 2026
Modified
Jun 12, 2026
Public PoC / Exploit
All weaponized →No public PoC or exploit code indexed for this CVE.
Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.
Description
A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Sequoia 15.4. An app may be able to access sensitive user data.
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NWeaknesses (CWE)
Affected Products (1)
References (1)