CVE-2025-43518

low

Description

A logic issue was addressed with improved checks. This issue is fixed in watchOS 26.2, macOS Sonoma 14.8.3, macOS Tahoe 26.2, iOS 26.2 and iPadOS 26.2, macOS Sequoia 15.7.3. An app may be able to inappropriately access files through the spellcheck API.

References

https://support.apple.com/en-us/125890

https://support.apple.com/en-us/125888

https://support.apple.com/en-us/125887

https://support.apple.com/en-us/125886

https://support.apple.com/en-us/125884

Details

Source: Mitre, NVD

Published: 2025-12-12

Updated: 2025-12-17

Risk Information

CVSS v2

Base Score: 1.7

Vector: CVSS2#AV:L/AC:L/Au:S/C:P/I:N/A:N

Severity: Low

CVSS v3

Base Score: 3.3

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Severity: Low

EPSS

EPSS: 0.00018