Memory Corruption Vulnerability in Apple Safari and Related Products
CVE-2025-43431

8.8HIGH

Key Information:

Vendor: Apple
Status: Safari; TV OS; Mac OS; Visionos
Vendor: CVE Published:; 4 November 2025

What is CVE-2025-43431?

This vulnerability arises from improper memory handling within Apple Safari and other related platforms. When processing specially crafted web content, affected systems may experience memory corruption, potentially leading to unintended behaviors or security breaches. This issue has been addressed in the latest updates across various Apple platforms, including Safari and its associated operating systems.

Affected Version(s)

iOS and iPadOS < 26.1

iOS and iPadOS < 18.7

macOS < 26.1

References

https://support.apple.com/en-us/125640

https://support.apple.com/en-us/125637

https://support.apple.com/en-us/125634

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Nov 4, 2025
Vulnerability Reserved
Apr 16, 2025

JSON