CVE-2025-46282

Description

The issue was addressed with additional permissions checks. This issue is fixed in Safari 26.2, macOS Tahoe 26.2. An app may be able to access sensitive user data.

CVSS Details

CVSS Score

5.5

Severity

MEDIUM

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Configurations (Affected Products)

cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:* - VULNERABLE

cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* - VULNERABLE

Apple Safari < 26.2

macOS Tahoe < 26.2

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

// CVE-2025-46282 PoC Concept
// This is a conceptual proof-of-concept demonstrating the vulnerability
// Actual exploitation requires specific conditions and local access

// Note: No public PoC is available for this vulnerability
// The vulnerability allows a local application to bypass permission checks
// and access sensitive user data without user interaction

// Example attack scenario (conceptual):
function exploitVulnerability() {
    // 1. Attacker creates malicious application
    const maliciousApp = {
        name: 'LegitimateApp',
        capabilities: ['readUserData']
    };
    
    // 2. Application exploits permission check bypass
    // to access sensitive data without proper authorization
    const sensitiveData = maliciousApp.accessProtectedData();
    
    // 3. Data exfiltration occurs
    exfiltrateData(sensitiveData);
}

// Mitigation: Update to Safari 26.2 and macOS Tahoe 26.2

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2025-46282
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2025-46282
[3] CVE Details https://www.cvedetails.com/cve/CVE-2025-46282/
[4] VulDB https://vuldb.com/cve/CVE-2025-46282
[5] https://support.apple.com/en-us/125886
[6] https://support.apple.com/en-us/125892

Raw JSON Data

JSON

{"cve": {"id": "CVE-2025-46282", "sourceIdentifier": "[email protected]", "published": "2025-12-17T21:16:13.533", "lastModified": "2026-04-02T19:21:03.177", "vulnStatus": "Modified", "cveTags": [], "descriptions": [{"lang": "en", "value": "The issue was addressed with additional permissions checks. This issue is fixed in Safari 26.2, macOS Tahoe 26.2. An app may be able to access sensitive user data."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "baseScore": 5.5, "baseSeverity": "MEDIUM", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "availabilityImpact": "NONE"}, "exploitabilityScore": 1.8, "impactScore": 3.6}, {"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "baseScore": 5.5, "baseSeverity": "MEDIUM", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "availabilityImpact": "NONE"}, "exploitabilityScore": 1.8, "impactScore": 3.6}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}, {"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-284"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*", "versionEndExcluding": "26.2", "matchCriteriaId": "3ECBF838-536C-47F9-9876-C526B8ED32EC"}, {"vulnerable": true, "criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*", "versionEndExcluding": "26.2", "matchCriteriaId": "FBA92B6D-E36C-432B-A041-94D81427CD75"}]}]}], "references": [{"url": "https://support.apple.com/en-us/125886", "source": "[email protected]", "tags": ["Release Notes", "Vendor Advisory"]}, {"url": "https://support.apple.com/en-us/125892", "source": "[email protected]", "tags": ["Release Notes", "Vendor Advisory"]}]}}