Denial-of-Service Vulnerability in Apple macOS and iOS Products
CVE-2025-43295

Currently unrated

Key Information:

Vendor: Apple
Status: Mac OS; iOS And iPad OS
Vendor: CVE Published:; 15 September 2025

What is CVE-2025-43295?

A vulnerability exists in specific versions of Apple’s operating systems, enabling an application to exploit the system and potentially lead to a denial-of-service situation. This issue stems from inadequate validation processes, which could allow a malicious app to crash services, impacting user access and system functionality. The vulnerability has been addressed in the latest updates, including macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26, and iOS and iPadOS 18.7. Users are strongly encouraged to update their systems to mitigate any risks associated with this vulnerability.

Affected Version(s)

iOS and iPadOS < 18.7

macOS < 14.8

macOS < 26

References

https://support.apple.com/en-us/125112

https://support.apple.com/en-us/125109

https://support.apple.com/en-us/125110

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 15, 2025
Vulnerability Reserved
Apr 16, 2025