macOS Sequoia 15.7.3 Downgrade Issue on Intel Macs Allows Data Access
CVE-2025-43522 Published on December 12, 2025
A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions. This issue is fixed in macOS Tahoe 26.2, macOS Sequoia 15.7.3. An app may be able to access user-sensitive data.
Vulnerability Analysis
CVE-2025-43522 is exploitable with local system access, and requires small amount of user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have a small impact on confidentiality, a small impact on integrity and availability.
Weakness Type
Improper Verification of Cryptographic Signature
The software does not verify, or incorrectly verifies, the cryptographic signature for data.
Products Associated with CVE-2025-43522
Want to know whenever a new CVE is published for Apple macOS? stack.watch will email you.
Affected Versions
Apple macOS:- Version unspecified and below 15.7 is affected.
- Version unspecified and below 26.2 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.