Primary

Context

Apple macOS Sequoia and Sonoma User Enrollment Bypass Vulnerability in Lockdown Mode

Vulnerability

Patched

A configuration vulnerability allowing account-driven User Enrollment to bypass Lockdown Mode has been identified in Apple macOS Sequoia 15.6 and macOS Sonoma 14.7.7. While Lockdown Mode is designed to enhance security by limiting certain functionalities, this vulnerability could still permit User Enrollment under specific conditions.

Impact

Exploitation of this vulnerability could lead to unauthorized account-driven User Enrollment, potentially allowing users to enroll devices in a management system without proper authorization, bypassing the intended restrictions of Lockdown Mode.

Remediation

Users can update to Apple macOS Sequoia 15.6 or macOS Sonoma 14.7.7 to address this vulnerability.

Added: Jul 30, 2025, 2:26 AM

Updated: Jul 30, 2025, 2:26 AM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

1.3

exploitability

3.0

remediation

7.9

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

1.3

exploitability

3.0

remediation

7.9

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apple macOS Sequoia and Sonoma User Enrollment Bypass Vulnerability in Lockdown Mode

Vulnerability

Impact

Remediation

Affected Products

Apple macOS Sequoia

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating