CVE-2025-43209

216.73.217.22

· Published 30/07/2025 00:15 · Modified 31/07/2025 21:09

Labels: CVE-2025-43209 2025-07-30 CVE-2025-43209 CWE-787 [email protected]

Essential information

Published: 30/07/2025 00:15
Modified: 31/07/2025 21:09
Author: —
Creator: —
CVSS: 9.8 CRITICAL (v3.1)
CISA KEV: No
CWE: —
CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS metrics

Description

An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in macOS Sequoia 15.6, iPadOS 17.7.9, iOS 18.6 and iPadOS 18.6, tvOS 18.6, macOS Sonoma 14.7.7, watchOS 11.6, visionOS 2.6, macOS Ventura 13.7.7. Processing maliciously crafted web content may lead to an unexpected Safari crash.

NVD status

Status: Analyzed — CVE has been recently published to the CVE List and has been received by the NVD.
Source: [email protected]
NVD: View on NVD

Affected products (CPE)

Product	CPE
apple / ipados	`cpe:2.3:o:apple:ipados::::::::`
apple / ipados	`cpe:2.3:o:apple:ipados::::::::`
apple / iphone os	`cpe:2.3:o:apple:iphone_os::::::::`
apple / macos	`cpe:2.3:o:apple:macos::::::::`
apple / macos	`cpe:2.3:o:apple:macos::::::::`
apple / macos	`cpe:2.3:o:apple:macos::::::::`
apple / tvos	`cpe:2.3:o:apple:tvos::::::::`
apple / visionos	`cpe:2.3:o:apple:visionos::::::::`
apple / watchos	`cpe:2.3:o:apple:watchos::::::::`