Microsoft Threat Intelligence recently disclosed a serious macOS vulnerability dubbed Sploitlight. It tracked as CVE-2025-31199 that leverages Spotlight importer plugins to bypass Apple’s Transparency, Consent, and Control (TCC) framework and exfiltrate files normally off-limits, including Apple Intelligence caches. Apple addressed the issue in macOS Sequoia 15.4, released on March 31, 2025, but any systems still on older […]
The post Microsoft Uncovers Sploitlight: How a Spotlight Plugin Flaw Evades macOS TCC Protections appeared first on SecPod Blog.
