CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
CVE-2025-31262: A permissions issue was addressed with additional restrictions. This issue is fixed in visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3,...
Description
A permissions issue was addressed with additional restrictions. This issue is fixed in visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. An app may be able to modify protected parts of the file system.
Classification
CVE ID: CVE-2025-31262
Problem Types
An app may be able to modify protected parts of the file systemAffected Products
Vendor: Apple
Product: visionOS, tvOS, macOS, watchOS, iOS and iPadOS
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.01% (probability of being exploited)
EPSS Percentile: 0.55% (scored less or equal to compared to others)
EPSS Date: 2025-06-17 (when was this score calculated)
Stakeholder-Specific Vulnerability Categorization (SSVC)
SSVC Exploitation: none
SSVC Technical Impact: partial
SSVC Automatable: false
References
https://nvd.nist.gov/vuln/detail/CVE-2025-31262https://support.apple.com/en-us/122073
https://support.apple.com/en-us/122072
https://support.apple.com/en-us/122068
https://support.apple.com/en-us/122071
https://support.apple.com/en-us/122066