AI description
CVE-2025-31191 is a vulnerability that affects multiple Apple operating systems, including macOS Ventura, tvOS, iOS, iPadOS, macOS Sequoia, and macOS Sonoma. It involves an issue where an app may be able to access sensitive user data due to state management issues. The vulnerability was addressed by Apple through improved state management in the security updates released on March 31, 2025. It was discovered that the exploit could allow an attacker to delete and replace a keychain entry used to sign security-scoped bookmarks to ultimately escape the App Sandbox without user interaction.
- Description
- This issue was addressed through improved state management. This issue is fixed in macOS Ventura 13.7.5, tvOS 18.4, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5. An app may be able to access sensitive user data.
- Source
- product-security@apple.com
- NVD status
- Analyzed
CVSS 3.1
- Type
- Secondary
- Base score
- 5.5
- Impact score
- 3.6
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
- Severity
- MEDIUM
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-200
Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.
- Hype score
25
Originally from: MS Threat Intel: Analyzing CVE-2025-31191: A macOS security-scoped bookmarks-based sandbox escape https://t.co/8ZJCCHk1Iw ( :-{ı▓ #CTI #cybersecurity #cyberresearch https://t.co/EYKap2AoXo
@Cyb3rR3s34rch
2 May 2025
8 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Analyzing CVE-2025-31191: A #macOS #security-scoped bookmarks-based #sandbox_escape https://t.co/NZSvWGjVdr https://t.co/5rSVcsKGfe
@omvapt
2 May 2025
2 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🐧 macOS faces a critical security flaw, CVE-2025-31191, letting attackers escape the App Sandbox! It's like a game of hide and seek, but we prefer the seekers to be the good guys! Stay safe out there! #WindowsForum #macOS #SecurityFlaw https://t.co/c2j54T1MXM
@windowsforum
1 May 2025
16 Impressions
2 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Microsoft uncovered a vulnerability, tracked as CVE-2025-31191, in macOS that could allow specially crafted codes to escape the App Sandbox without user interaction and run unrestricted on systems. https://t.co/Twf9ezDSKk
@MsftSecIntel
1 May 2025
11768 Impressions
28 Retweets
70 Likes
16 Bookmarks
2 Replies
1 Quote
🔴 #macOS/#iOS, Sensitive Data Exposure, #CVE-2025-31191 (Critical) https://t.co/skoQ2jTdXC
@dailycve
4 Apr 2025
5 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6B3450F7-7B4A-46CE-A6E0-BBE6569F2EBF",
"versionEndExcluding": "18.4"
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0D9C73F9-FEF4-4FC1-B83D-56566AD35990",
"versionEndExcluding": "18.4"
},
{
"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "345CC17A-CCA4-4B82-A645-A5226A8DAEBB",
"versionEndExcluding": "13.7.5"
},
{
"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D05DCA25-A1A0-4AEA-9F31-952803114EE2",
"versionEndExcluding": "14.7.5",
"versionStartIncluding": "14.0"
},
{
"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1320B815-0457-4276-83B9-AFAFDAF17EDA",
"versionEndExcluding": "15.4",
"versionStartIncluding": "15.0"
},
{
"criteria": "cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8C61CCC2-87D3-4A3A-837B-63C48299A7AD",
"versionEndExcluding": "18.4"
}
],
"operator": "OR"
}
]
}
]