Denial-of-Service Vulnerability in Apple Products Affects Network Settings
CVE-2025-43223

7.5HIGH

Key Information:

Vendor: Apple
Status: iPad OS; Mac OS; TV OS; Visionos
Vendor: CVE Published:; 30 July 2025

What is CVE-2025-43223?

A vulnerability exists in several Apple operating systems that can allow a non-privileged user to alter restricted network settings. This issue stems from inadequate input validation and affects multiple versions of macOS, iPadOS, iOS, watchOS, tvOS, and visionOS. Apple has released updates for affected products to mitigate this risk. It is crucial for users to update their devices to the latest versions to enhance security and prevent potential exploitation.

Affected Version(s)

iOS and iPadOS < 18.6

iPadOS < 17.7

macOS < 15.6

References

https://support.apple.com/en-us/124148

https://support.apple.com/en-us/124149

https://support.apple.com/en-us/124153

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 30, 2025

JSON