CVE-2025-43522 Apple Mac代码签名降级漏洞导致敏感数据访问

# CVE-2025-43522 PoC概念验证（代码签名降级检测） # Note: This is for educational and research purposes only import subprocess import plistlib import os def check_code_signature_status(binary_path): """Check if a binary has valid code signature""" try: result = subprocess.run( ['codesign', '-vv', binary_path], capture_output=True, text=True, timeout=10 ) return result.stdout, result.returncode except Exception as e: return str(e), -1 def check_system_version(): """Check macOS version to determine vulnerability status""" try: result = subprocess.run( ['sw_vers', '-productVersion'], capture_output=True, text=True, timeout=5 ) version = result.stdout.strip() # Check if system is vulnerable (versions before 15.7.3 for Sequoia) if version.startswith('15.'): major, minor, patch = map(int, version.split('.')[:3]) if patch < 7 or (patch == 7 and len(version.split('.')) > 3 and int(version.split('.')[3]) < 3): return version, True return version, False except: return 'Unknown', None def main(): print("=" * 60) print("CVE-2025-43522 Detection Tool") print("Code Signing Downgrade Vulnerability Checker") print("=" * 60) # Check system version version, is_vulnerable = check_system_version() print(f"\nSystem Version: {version}") if is_vulnerable: print("[!] System may be VULNERABLE to CVE-2025-43522") print("[!] Recommendation: Update to macOS Sequoia 15.7.3 or later") elif is_vulnerable is False: print("[+] System appears to be PATCHED") else: print("[?] Unable to determine vulnerability status") # Check critical system binaries critical_bins = [ '/usr/libexec/cfprefsd', '/System/Library/CoreServices/SystemVersion.plist', '/usr/bin/codesign' ] print("\nChecking code signatures of critical binaries:") for binary in critical_bins: if os.path.exists(binary): stdout, retcode = check_code_signature_status(binary) status = "VALID" if retcode == 0 else "INVALID/EXPIRED" print(f" {binary}: {status}") if __name__ == "__main__": main()