Use-After-Free Vulnerability in Apple iOS and iPadOS
CVE-2025-43511

6.5MEDIUM

Key Information:

Vendor: Apple
Status: Safari; iOS And iPad OS; Visionos; Mac OS
Vendor: CVE Published:; 12 December 2025

What is CVE-2025-43511?

A use-after-free vulnerability in Apple’s iOS and iPadOS was addressed with improved memory management. This issue could potentially allow maliciously crafted web content to cause unexpected crashes of the affected processes, posing a risk to user data and device stability. The vulnerability has been fixed in iOS 18.7.2 and iPadOS 18.7.2, emphasizing the importance of updating devices to the latest versions to safeguard against such risks.

Affected Version(s)

iOS and iPadOS < 26.2

iOS and iPadOS < 18.7

macOS < 26.2

References

https://support.apple.com/en-us/125892

https://support.apple.com/en-us/125884

https://support.apple.com/en-us/125891

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Dec 12, 2025
Vulnerability Reserved
Apr 16, 2025

JSON