CVE-2025-43186

CVE-2025-43186

Information

CVE_ID              : CVE-2025-43186
Severity            : CRITICAL
Published        : 2025-07-30T00:15:31.613
LastModified  : 2025-11-03T20:18:49.680
Updated          : 2025-11-03T20:18:49.680
Status              : Modified

Descriptions:

The issue was addressed with improved memory handling. This issue is fixed in watchOS 11.6, iOS 18.6 and iPadOS 18.6, tvOS 18.6, macOS Sequoia 15.6, macOS Sonoma 14.7.7, visionOS 2.6, macOS Ventura 13.7.7. Parsing a file may lead to an unexpected app termination.


Know Exploitability

Exploitability : False

Vendor Affected

apple

CVE-2025-43186

V4.0

V3.1

Score : 9.8
Severity : CRITICAL
Attack Vector : NETWORK
Attack Complexity : LOW
Privileges Required : NONE
User Interaction : NONE
Scope : UNCHANGED
Confidentiality Impact : HIGH
Integrity Impact : HIGH
Availability Impact : HIGH
Exploitability : 3.9
Impact Score : 5.9

V3.0

V2.0

References

https://support.apple.com/en-us/124147

https://support.apple.com/en-us/124149

https://support.apple.com/en-us/124150

https://support.apple.com/en-us/124151

https://support.apple.com/en-us/124153

https://support.apple.com/en-us/124154

https://support.apple.com/en-us/124155

http://seclists.org/fulldisclosure/2025/Jul/30

http://seclists.org/fulldisclosure/2025/Jul/32

http://seclists.org/fulldisclosure/2025/Jul/33

http://seclists.org/fulldisclosure/2025/Jul/34

http://seclists.org/fulldisclosure/2025/Jul/36

http://seclists.org/fulldisclosure/2025/Jul/37

Vendor Product
apple
  • ipados*****
  • iphone_os*****
  • macos*****
  • macos*****
  • macos*****
  • tvos*****
  • visionos*****
  • watchos*****