CVE-2025-43222 — Use After Free in Apple Ipados

CWE-416 — Use After Free7 documents4 sources

Severity

9.8CRITICALNVD

EPSS

0.1%

top 68.57%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple Ipados Apple Macos

Timeline

PublishedJul 30

Description

A use-after-free issue was addressed by removing the vulnerable code. This issue is fixed in iPadOS 17.7.9, macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An attacker may be able to cause unexpected app termination.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages4 packages

▶CVEListV5apple/macos< 14.7.7+2

▶NVDapple/macos14.0 — 14.7.7+2

▶CVEListV5apple/ipados< 17.7.9

▶NVDapple/ipados< 17.7.9

🔴Vulnerability Details

GHSA

GHSA-gfcc-vchc-gg23: A use-after-free issue was addressed by removing the vulnerable code↗2025-07-30

▶

CVEList

CVE-2025-43222: A use-after-free issue was addressed by removing the vulnerable code↗2025-07-29

▶

📋Vendor Advisories

Apple

CVE-2025-43222: iPadOS 17.7.9↗2025-07-29

▶

Apple

CVE-2025-43222: macOS Sequoia 15.6↗2025-07-29

▶

Apple

CVE-2025-43222: macOS Ventura 13.7.7↗2025-07-29

▶

Apple

CVE-2025-43222: macOS Sonoma 14.7.7↗2025-07-29

▶