VDB

CISA-2025-43346

CISA-2025-43346 PUBLISHED CVSS 5.5 MEDIUM

Reported by apple · Published September 15, 2025

An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in tvOS 26, watchOS 26, iOS 18.7 and iPadOS 18.7, visionOS 26, macOS Tahoe 26, iOS 26 and iPadOS 26. Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory.

Risk Scores

CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
AppleiOS and iPadOSunspecified
AppleiOS and iPadOSunspecified
AppletvOSunspecified
ApplevisionOSunspecified
ApplewatchOSunspecified
ApplemacOSunspecified
ApplemacOS*, unspecified
ApplevisionOS*, unspecified
ApplewatchOS*, unspecified
AppleiOS and iPadOS*, *, unspecified
AppletvOSunspecified, unspecified

Timeline

  • Sep 15, 2025 CVE Published
  • Sep 26, 2025 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›