CVE-2025-43202

CWE-787Out-of-bounds Write6 documents5 sources
Severity
8.8HIGH
EPSS
0.0%
top 94.60%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Apple IOS AND IpadosApple MacosApple Ipados+1 more
Timeline
PublishedApr 2

Description

This issue was addressed with improved memory handling. This issue is fixed in iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6. Processing a file may lead to memory corruption.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages5 packages

CVEListV5apple/macos< 15.6
NVDapple/macos< 15.6
NVDapple/ipados< 18.6
CVEListV5apple/ios_and_ipados< 18.6
NVDapple/iphone_os< 18.6

🔴Vulnerability Details

2
CVEList
CVE-2025-43202: This issue was addressed with improved memory handling2026-04-02
GHSA
GHSA-37mp-2f5m-44h4: This issue was addressed with improved memory handling2026-04-02

📋Vendor Advisories

2
Apple
CVE-2025-43202: macOS Sequoia 15.62025-07-29
Apple
CVE-2025-43202: iOS 18.6 and iPadOS 18.62025-07-29

🕵️Threat Intelligence

1
Wiz
CVE-2025-43202 Impact, Exploitability, and Mitigation Steps | Wiz
CVE-2025-43202 (HIGH CVSS 8.8) | This issue was addressed with impro | cvebase.io