{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2025-43410","assignerOrgId":"286789f9-fbc2-4510-9f9a-43facdede74c","state":"PUBLISHED","assignerShortName":"apple","dateReserved":"2025-04-16T15:24:37.121Z","datePublished":"2025-12-12T20:57:00.378Z","dateUpdated":"2026-04-02T18:25:54.548Z"},"containers":{"cna":{"problemTypes":[{"descriptions":[{"lang":"en","description":"An attacker with physical access may be able to view deleted notes"}]}],"affected":[{"vendor":"Apple","product":"macOS","versions":[{"version":"0","status":"affected","lessThan":"14.8.2","versionType":"custom"},{"version":"0","status":"affected","lessThan":"15.7.2","versionType":"custom"},{"version":"0","status":"affected","lessThan":"26.2","versionType":"custom"}]}],"descriptions":[{"lang":"en","value":"The issue was addressed with improved handling of caches. This issue is fixed in macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS Tahoe 26.2. An attacker with physical access may be able to view deleted notes."}],"references":[{"url":"https://support.apple.com/en-us/125635"},{"url":"https://support.apple.com/en-us/125636"},{"url":"https://support.apple.com/en-us/125886"}],"providerMetadata":{"orgId":"286789f9-fbc2-4510-9f9a-43facdede74c","shortName":"apple","dateUpdated":"2026-04-02T18:25:54.548Z"}},"adp":[{"problemTypes":[{"descriptions":[{"type":"CWE","cweId":"CWE-524","lang":"en","description":"CWE-524 Use of Cache Containing Sensitive Information"}]}],"metrics":[{"cvssV3_1":{"scope":"UNCHANGED","version":"3.1","baseScore":2.4,"attackVector":"PHYSICAL","baseSeverity":"LOW","vectorString":"CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","integrityImpact":"NONE","userInteraction":"NONE","attackComplexity":"LOW","availabilityImpact":"NONE","privilegesRequired":"NONE","confidentialityImpact":"LOW"}},{"other":{"type":"ssvc","content":{"timestamp":"2025-12-13T22:50:30.345155Z","id":"CVE-2025-43410","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2025-12-13T22:50:34.042Z"}}]}}