Out-of-Bounds Access Vulnerability in Apple Operating Systems
CVE-2025-43346

6.2MEDIUM

Key Information:

Vendor: Apple
Status: iOS And iPad OS; TV OS; Visionos; Watch OS
Vendor: CVE Published:; 15 September 2025

What is CVE-2025-43346?

An out-of-bounds access vulnerability has been identified in several Apple operating systems, potentially allowing for unexpected app terminations or memory corruption when processing maliciously crafted media files. This flaw has been remediated in the latest updates, emphasizing the importance of keeping your devices up-to-date to mitigate security risks.

Affected Version(s)

iOS and iPadOS < 26

iOS and iPadOS < 18.7

macOS < 26

References

https://support.apple.com/en-us/125108

https://support.apple.com/en-us/125109

https://support.apple.com/en-us/125114

CVSS V3.1

Score:

6.2

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 15, 2025
Vulnerability Reserved
Apr 16, 2025