Skip to content
operating-system

CVE-2025-43524

Description

CVE-2025-43524 is an access issue in the Icons component of macOS. According to Apple's advisory, the flaw could allow an app to break out of its sandbox. It was reported by Csaba Fitzl (@theevilbit) of Iru.

Impact

Exploitation of this vulnerability could allow a malicious app to escape its sandbox via a flaw in icon handling. Apple addressed the issue with additional sandbox restrictions in macOS Sequoia 15.7.7 (this fix was also carried in macOS Tahoe 26.2, where Apple's advisory describes the same CVE as a logic issue addressed with improved checks — a minor wording difference across the two OS branches worth noting if you cross-reference both advisories).

Stay up to date

Iru's bi-weekly collection of articles, videos, and research to keep IT & Security teams ahead of the curve.