PatchSiren cyber security CVE debrief
CVE-2025-24165 Apple CVE debrief
CVE-2025-24165 is a medium-severity vulnerability (CVSS Score: 5.5) affecting macOS. An app may be able to cause unexpected system termination due to a permissions issue, which was addressed with additional restrictions in macOS Sequoia 15.4, macOS Sonoma 14.7.5, and macOS Ventura 13.7.5.
- Vendor
- Apple
- Product
- macOS
- CVSS
- MEDIUM 5.5
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-11
- Original CVE updated
- 2026-06-12
- Advisory published
- 2026-06-11
- Advisory updated
- 2026-06-12
Who should care
Users of macOS Sequoia, macOS Sonoma, and macOS Ventura, as well as administrators responsible for maintaining these systems.
Technical summary
The vulnerability, tracked as CVE-2025-24165, is caused by a permissions issue that allows an app to potentially cause unexpected system termination. This issue was fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, and macOS Ventura 13.7.5.
Defensive priority
Medium
Recommended defensive actions
- Update to macOS Sequoia 15.4, macOS Sonoma 14.7.5, or macOS Ventura 13.7.5 to address the vulnerability.
- Ensure all apps are updated and from trusted sources.
Evidence notes
The CVE record and NVD detail pages provide official information about the vulnerability.
Official resources
CVE-2025-24165 was published on 2026-06-11T19:16:26.260Z and modified on 2026-06-12T22:16:46.927Z.