CVE-2025-30422

CVE Database · CVE-2025-30422

CVE-2025-30422

· MEDIUMModified

CVSS v3.1

6.5

EPSS

0.57%

Published

Apr 30, 2025

Modified

Apr 2, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A buffer overflow was addressed with improved input validation. This issue is fixed in AirPlay audio SDK 2.7.1 and AirPlay video SDK 3.6.0.126. An attacker on the local network may cause an unexpected app termination.

CVSS Vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Weaknesses (CWE)

CWE-120CWE-120

Affected Products (3)

apple · airplay_audio_software_development_kit (up to 2.7.1)vulnerable

apple · airplay_video_software_development_kit (up to 3.6.0.126)vulnerable

apple · carplay_communication_plug-in (up to r18.1)vulnerable

References (1)

https://support.apple.com/en-us/122403

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs