This issue was addressed with improved access restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. A malicious app acting as a HTTPS proxy could get access to sensitive user data.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| Apple |
|
Configuration 1 [-]
|
No data.
References
History
Fri, 01 Aug 2025 14:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| CPEs | cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* |
Wed, 30 Jul 2025 18:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Weaknesses | CWE-284 | |
| Metrics |
cvssV3_1
|
Wed, 30 Jul 2025 11:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Apple
Apple macos Apple macos Sequoia Apple macos Sonoma Apple macos Ventura |
|
| Vendors & Products |
Apple
Apple macos Apple macos Sequoia Apple macos Sonoma Apple macos Ventura |
Wed, 30 Jul 2025 00:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | This issue was addressed with improved access restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. A malicious app acting as a HTTPS proxy could get access to sensitive user data. | |
| References |
|
MITRE
Status: PUBLISHED
Assigner: apple
Published: 2025-07-29T23:54:25.282Z
Updated: 2025-07-30T18:05:49.236Z
Reserved: 2025-04-16T15:24:37.091Z
Link: CVE-2025-43233
Vulnrichment
Updated: 2025-07-30T13:20:12.227Z
NVD
Status : Analyzed
Published: 2025-07-30T00:15:35.350
Modified: 2025-08-01T14:34:27.217
Link: CVE-2025-43233
Redhat
No data.