vulnerability
OS X update for libxpc (CVE-2025-31182)
Severity | CVSS | Published | Added | Modified |
---|---|---|---|---|
5 | (AV:L/AC:M/Au:N/C:N/I:C/A:N) | Apr 1, 2025 | Apr 1, 2025 | Apr 8, 2025 |
Severity
5
CVSS
(AV:L/AC:M/Au:N/C:N/I:C/A:N)
Published
Apr 1, 2025
Added
Apr 1, 2025
Modified
Apr 8, 2025
Description
This issue was addressed with improved handling of symlinks. This issue is fixed in visionOS 2.4, macOS Ventura 13.7.5, tvOS 18.4, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to delete files for which it does not have permission.
Solution(s)
apple-osx-upgrade-13_7_5apple-osx-upgrade-14_7_5apple-osx-upgrade-15_4

NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.