Sploitlight: Analyzing a Spotlight-based macOS TCC vulnerability

www.microsoft.com

cross-posted to:
[email protected]

Sploitlight: Analyzing a Spotlight-based macOS TCC vulnerability

www.microsoft.com

Pro to

cybersecurity@infosec.pub · 26 days ago

cross-posted to:
[email protected]

Sploitlight: Analyzing a Spotlight-based macOS TCC vulnerability | Microsoft Security Blog

www.microsoft.com

Microsoft Threat Intelligence has discovered a macOS vulnerability, tracked as CVE-2025-31199, that could allow attackers to steal private data of files normally protected by Transparency, Consent, and Control (TCC), including the ability to extract and leak sensitive information cached by Apple Intelligence.

You must log in or register to comment.

Chat

cybersecurity@infosec.pub

Create a post

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: [email protected]

An umbrella community for all things cybersecurity / infosec. News, research, questions, are all welcome!

Community Rules

Be kind
Limit promotional activities
Non-cybersecurity posts should be redirected to other communities within infosec.pub.

Enjoy!

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

18 users / day
204 users / week
826 users / month
2.13K users / 6 months
113 local subscribers
4.83K subscribers
1.03K Posts
1.86K Comments
Modlog