Primary

Context

Apple macOS Downgrade Vulnerability in AppleMobileFileIntegrity Allowing Access to Sensitive User Data

Vulnerability

Patched

A vulnerability exists in the AppleMobileFileIntegrity component of macOS Ventura, Sequoia, and Sonoma, allowing apps to access sensitive user data. This issue arises from a downgrade vulnerability that was addressed with additional code-signing restrictions. The vulnerability affects several different versions and/or ranges of macOS Ventura, Sequoia, and Sonoma.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive user data by applications.

Remediation

Users can update to macOS Ventura 13.7.3, macOS Sequoia 15.3, or macOS Sonoma 14.7.3 to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

4.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

4.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apple macOS Downgrade Vulnerability in AppleMobileFileIntegrity Allowing Access to Sensitive User Data

Vulnerability

Impact

Remediation

Affected Products

Apple macOS Ventura

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating