Out-of-Bounds Read Vulnerability in Apple Products
CVE-2025-43265

Currently unrated

Key Information:

Vendor: Apple
Status: Various Apple Operating Systems
Vendor: CVE Published:; 30 July 2025

What is CVE-2025-43265?

This vulnerability involves an out-of-bounds read that could potentially allow an attacker to access sensitive internal application states through maliciously crafted web content. With suitable input validation improvements, Apple has addressed this issue in multiple updates, including watchOS 11.6 and iOS 18.6, enhancing the security posture of its operating systems against such attacks.

References

https://support.apple.com/en-us/124147

https://support.apple.com/en-us/124149

https://support.apple.com/en-us/124153

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 30, 2025