What is CVE-2025-31272?

CVE-2025-31272 is a high-severity vulnerability, classified under Improper Privilege Management. CVSS score: 7.8/10. Published 2026-06-11.

How severe is CVE-2025-31272?

High severity. CVSS v3 base score is 7.8 out of 10.

CVE-2025-31272

CVE-2025-31272

The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4. An app may be able to bypass launch constraint protections and execute malicious code with elevated privileges.

Vulnerability class: Privilege Escalation

CVSS v3 metric

CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Weakness classification (CWE)

CWE-269 — Improper Privilege Management

References

product-security@apple.com

Frequently asked questions

What is CVE-2025-31272?: CVE-2025-31272 is a high-severity vulnerability, classified under Improper Privilege Management. CVSS score: 7.8/10. Published 2026-06-11.
How severe is CVE-2025-31272?: High severity. CVSS v3 base score is 7.8 out of 10.