Out-of-Bounds Read Vulnerability in macOS Products by Apple
CVE-2025-43474

7.8HIGH

Key Information:

Vendor: Apple
Status: Mac OS
Vendor: CVE Published:; 4 November 2025

What is CVE-2025-43474?

A security issue was identified in Apple's macOS products that could allow an attacker to exploit an out-of-bounds read condition. This vulnerability may enable unintended access to sensitive kernel memory or lead to unexpected application terminations. Enhanced input validation has been implemented in recent updates of macOS Sonoma 14.8.2 and macOS Sequoia 15.7.2 to mitigate this risk.

Affected Version(s)

macOS < 14.8

macOS < 15.7

References

https://support.apple.com/en-us/125636

https://support.apple.com/en-us/125635

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 4, 2025
Vulnerability Reserved
Apr 16, 2025

JSON