Security Vulnerability in Apple iOS and macOS Products
CVE-2025-43227

Currently unrated

Key Information:

Vendor: Apple
Status: iOS, iPadOS, macOS, tvOS, watchOS, visionOS
Vendor: CVE Published:; 30 July 2025

What is CVE-2025-43227?

A vulnerability has been identified that allows for the potential disclosure of sensitive user information when processing maliciously crafted web content on Apple devices. This issue arises from inadequate state management, which could enable attackers to exploit the affected products. Apple has addressed this concern in updates for iOS 18.6, iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6, watchOS 11.6, and visionOS 2.6. Users are encouraged to update their devices to mitigate the risk associated with this vulnerability.

References

https://support.apple.com/en-us/124147

https://support.apple.com/en-us/124149

https://support.apple.com/en-us/124153

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 30, 2025