Denial-of-Service Vulnerability in macOS by Apple
CVE-2025-43401

7.5HIGH

Key Information:

Vendor: Apple
Status: Mac OS
Vendor: CVE Published:; 4 November 2025

What is CVE-2025-43401?

A denial-of-service vulnerability has been identified in macOS that allows remote attackers to exploit the system through inadequate validation processes. This flaw can lead to system instability, disrupting normal operations for users. Apple has addressed this issue in updates for macOS Sonoma 14.8.2 and macOS Sequoia 15.7.2, enhancing validation to mitigate the potential for remote exploitation.

Affected Version(s)

macOS < 14.8

macOS < 15.7

References

https://support.apple.com/en-us/125636

https://support.apple.com/en-us/125635

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 4, 2025
Vulnerability Reserved
Apr 16, 2025

JSON