CVE-2025-43226

Medium CVSS 4.0

Overview

An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 11.6, iOS 18.6 and iPadOS 18.6, iPadOS 17.7.9, tvOS 18.6, macOS Sequoia 15.6, macOS Sonoma 14.7.7, visionOS 2.6. Processing a maliciously crafted image may result in disclosure of process memory.

CWE: CWE-125 Published: 2025-07-30T00:15:34.687

Risk analysis

This vulnerability is rated 🟡 MEDIUM.

CVSS: 4.0 (MEDIUM)
Detected tags: oob_read (tag impact: LOW)

Recommended actions:

Prioritize remediation based on business criticality and exposure.
Limit exposure and increase monitoring until fixed.

Overview

Recommended tools

Tags