Main Vulnerability Database Vulnerabilities #VU117986

Information exposure through log files in macOS - CVE-2025-43423

Published: November 4, 2025

Vulnerability identifier: #VU117986

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2025-43423

CWE-ID: CWE-532

Exploitation vector: Local access

Exploit availability: No public exploit available

Vendor: Apple Inc.

Affected software:
macOS

Detailed vulnerability description

The vulnerability allows an attacker with physical access to the system to gain access to sensitive information.

The vulnerability exists due to inclusion of sensitive information into a log file in Audio. An attacker with physical access to the system can view sensitive user information in system logging.

How to mitigate CVE-2025-43423

Install update from vendor's website.

Sources

https://support.apple.com/en-us/125634

Information exposure through log files in macOS - CVE-2025-43423

Detailed vulnerability description

How to mitigate CVE-2025-43423

Sources

Please verify you're human