CVE-2025-43374

CVE Database · CVE-2025-43374

CVE-2025-43374

· MEDIUMModified

CVSS v3.1

4.3

EPSS

0.17%

Published

Nov 21, 2025

Modified

Apr 2, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 18.5 and iPadOS 18.5, iPadOS 17.7.7, macOS Sequoia 15.5, macOS Sonoma 14.7.3, macOS Ventura 13.7.3, tvOS 18.5, visionOS 2.5, watchOS 11.5. An attacker in physical proximity may be able to cause an out-of-bounds read in kernel memory.

CVSS Vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Weaknesses (CWE)

CWE-121

Affected Products (8)

apple · ipados (up to 17.7.7)vulnerable

apple · ipados (up to 18.5)vulnerable

apple · iphone_os (up to 18.5)vulnerable

apple · macos (up to 13.7.3)vulnerable

apple · macos (up to 14.7.3)vulnerable

apple · macos (up to 15.5)vulnerable

apple · visionos (up to 2.5)vulnerable