Buffer Overflow Vulnerability in Xcode by Apple
CVE-2025-43504

4.9MEDIUM

Key Information:

Vendor: Apple
Status: Xcode
Vendor: CVE Published:; 4 November 2025

What is CVE-2025-43504?

A vulnerability was identified in Xcode, where a buffer overflow due to insufficient bounds checking could allow a user with privileged access to disrupt services, potentially leading to a denial-of-service scenario. This issue has been addressed in Xcode 26.1, which includes enhancements to bounds checking mechanisms to mitigate this risk.

Affected Version(s)

Xcode < 26.1

References

https://support.apple.com/en-us/125641

CVSS V3.1

Score:

4.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 4, 2025
Vulnerability Reserved
Apr 16, 2025

JSON