CVE-2025-43277
Description
The issue was addressed with improved memory handling. This issue is fixed in iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, macOS Sonoma 14.8, tvOS 18.6, visionOS 2.6, watchOS 11.6. Processing a maliciously crafted audio file may lead to memory corruption.
CWE
- CWE-119 — CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer
Affected
- Apple / iOS and iPadOS — v=0 <18.6 [affected]
- Apple / macOS — v=0 <14.8 [affected]; v=0 <15.6 [affected]
- Apple / tvOS — v=0 <18.6 [affected]
- Apple / visionOS — v=0 <2.6 [affected]
- Apple / watchOS — v=0 <11.6 [affected]
CVSS
- (none)
References
- https://support.apple.com/en-us/124147
- https://support.apple.com/en-us/124149
- https://support.apple.com/en-us/124153
- https://support.apple.com/en-us/124154
- https://support.apple.com/en-us/124155
- https://support.apple.com/en-us/125112
Source
cvelistV5-main/cves/2025/43xxx/CVE-2025-43277.json