CVE-2025-43187
HIGH | Platform: macOS | Changelog
CVE Details
Description
This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. Running an hdiutil command may unexpectedly execute arbitrary code.
CVSS 3.1 Score
| Metric | Value |
|---|---|
| Base Score | 7.8 (HIGH) |
| Vector | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
References
- Apple Security Advisory
- NVD Entry
- https://support.apple.com/en-us/124149 (Release Notes, Vendor Advisory)
- https://support.apple.com/en-us/124150 (Release Notes, Vendor Advisory)
- http://seclists.org/fulldisclosure/2025/Jul/32
- http://seclists.org/fulldisclosure/2025/Jul/33
- http://seclists.org/fulldisclosure/2025/Jul/34