CVE-2025-24284: An app may be able to break out of its sandbox in Apple macOS
This issue was addressed with improved checks to prevent unauthorized actions. This issue is fixed in macOS Sequoia 15.4. An app may be able to break out of its sandbox.
AI Analysis
Technical Summary
This vulnerability allows an app running on Apple macOS to potentially escape its sandbox environment, which is designed to restrict app capabilities and access. The issue was resolved by Apple through enhanced validation checks to prevent unauthorized sandbox escapes. The fix is included in macOS Sequoia version 15.4. There is no detailed technical information or CVSS score available, and no known exploitation has been reported.
Potential Impact
If exploited, this vulnerability could allow a malicious or compromised app to perform actions outside its intended sandbox restrictions, potentially leading to unauthorized access to system resources or data. However, no known exploits are currently reported, and the issue is fixed in macOS Sequoia 15.4.
Mitigation Recommendations
Apply the official fix by updating to macOS Sequoia 15.4 or later, where the vulnerability has been addressed with improved sandbox checks. Since the vendor advisory confirms the issue is fixed in this version, updating is the recommended remediation.
CVE-2025-24284: An app may be able to break out of its sandbox in Apple macOS
Description
This issue was addressed with improved checks to prevent unauthorized actions. This issue is fixed in macOS Sequoia 15.4. An app may be able to break out of its sandbox.
CVSS v3.1
Score 8.8high
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability allows an app running on Apple macOS to potentially escape its sandbox environment, which is designed to restrict app capabilities and access. The issue was resolved by Apple through enhanced validation checks to prevent unauthorized sandbox escapes. The fix is included in macOS Sequoia version 15.4. There is no detailed technical information or CVSS score available, and no known exploitation has been reported.
Potential Impact
If exploited, this vulnerability could allow a malicious or compromised app to perform actions outside its intended sandbox restrictions, potentially leading to unauthorized access to system resources or data. However, no known exploits are currently reported, and the issue is fixed in macOS Sequoia 15.4.
Mitigation Recommendations
Apply the official fix by updating to macOS Sequoia 15.4 or later, where the vulnerability has been addressed with improved sandbox checks. Since the vendor advisory confirms the issue is fixed in this version, updating is the recommended remediation.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- apple
- Date Reserved
- 2025-01-17T00:00:45.020Z
- Cvss Version
- null
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a2b05c1815e7002b81e9961
Added to database: 6/11/2026, 7:00:17 PM
Last enriched: 6/11/2026, 7:30:23 PM
Last updated: 6/12/2026, 5:06:29 AM
Views: 13
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.