{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-10T23:03:21.837","vulnerabilities":[{"cve":{"id":"CVE-2025-24242","sourceIdentifier":"product-security@apple.com","published":"2025-03-31T23:15:21.433","lastModified":"2025-11-03T22:18:35.247","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sequoia 15.4. An app with root privileges may be able to access private information."},{"lang":"es","value":"Este problema se solucionó mejorando la gestión de enlaces simbólicos. Este problema se solucionó en macOS Sequoia 15.4. Una aplicación con privilegios de root podría acceder a información privada."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N","baseScore":4.4,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":0.8,"impactScore":3.6}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-59"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*","versionEndExcluding":"15.4","matchCriteriaId":"E3BD0A90-23F1-430A-8119-E14055F7E621"}]}]}],"references":[{"url":"https://support.apple.com/en-us/122373","source":"product-security@apple.com","tags":["Vendor Advisory"]},{"url":"http://seclists.org/fulldisclosure/2025/Apr/8","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}