Memory Handling Vulnerability in Apple Products
CVE-2025-43186

9.8CRITICAL

Key Information:

Vendor: Apple
Status: Mac OS; TV OS; Visionos; Watch OS
Vendor: CVE Published:; 30 July 2025

What is CVE-2025-43186?

This vulnerability arises from inadequate memory handling which could result in unexpected application terminations when parsing specific files. Apple has released updates for various operating systems, including iOS, macOS, and watchOS, to address this issue effectively. Users are strongly advised to upgrade to the latest versions to mitigate potential risks associated with this vulnerability.

Affected Version(s)

iOS and iPadOS < 18.6

macOS < 15.6

macOS < 14.7

References

https://support.apple.com/en-us/124149

https://support.apple.com/en-us/124153

https://support.apple.com/en-us/124154

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 30, 2025

JSON