Primary

Context

Apple PackageKit Entitlement Hijacking Vulnerability

Vulnerability

Patched

A vulnerability in the PackageKit component of macOS Sequoia 15.6 and macOS Sonoma 14.7.7 allows an app to hijack entitlements granted to other privileged apps. This issue was addressed with improved data protection.

Impact

Exploitation of this vulnerability could lead to unauthorized access to privileges or entitlements, potentially allowing an app to perform actions or access resources that should be restricted.

Added: Jul 30, 2025, 12:37 AM

Updated: Jul 30, 2025, 12:37 AM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

5.0

exploitability

3.3

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

5.0

exploitability

3.3

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apple PackageKit Entitlement Hijacking Vulnerability

Vulnerability

Impact

Affected Products

Apple macOS Sequoia

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating