Out-of-Bounds Access Vulnerability in Apple iOS and iPadOS Products
CVE-2025-43386

Currently unrated

Key Information:

Vendor: Apple
Status: TV OS; Visionos; iOS And iPad OS
Vendor: CVE Published:; 4 November 2025

What is CVE-2025-43386?

This vulnerability involves an out-of-bounds access issue that could be triggered by processing a specially crafted media file. It may lead to unexpected application termination or potentially corrupt system memory, affecting the stability and reliability of the affected Apple devices. Apple has addressed this issue in updated versions of iOS, iPadOS, tvOS, and visionOS through improved bounds checking mechanisms.

Affected Version(s)

iOS and iPadOS < 26.1

tvOS < 26.1

visionOS < 26.1

References

https://support.apple.com/en-us/125637

https://support.apple.com/en-us/125638

https://support.apple.com/en-us/125632

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 4, 2025
Vulnerability Reserved
Apr 16, 2025

JSON