Out-of-Bounds Read Vulnerability in Apple Operating Systems
CVE-2025-43361

7.8HIGH

Key Information:

Vendor: Apple
Status: iOS And iPad OS; Mac OS; TV OS; Visionos
Vendor: CVE Published:; 4 November 2025

What is CVE-2025-43361?

An out-of-bounds read vulnerability has been identified across several Apple operating systems, which could allow a malicious application to gain unauthorized access to kernel memory. This issue has been addressed through improved bounds checking mechanisms in affected versions, ensuring better protection against potential exploitation. Users are encouraged to update their devices to the latest software versions to mitigate any risks associated with this vulnerability.

Affected Version(s)

iOS and iPadOS < 26

macOS < 14.8

macOS < 15.7

References

https://support.apple.com/en-us/125108

https://support.apple.com/en-us/125636

https://support.apple.com/en-us/125114

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 4, 2025
Vulnerability Reserved
Apr 16, 2025

JSON