CVE-2025-43224

State: PUBLISHED · Published: 2025-07-29 · Updated: 2026-04-02 · Assigner: apple

Description

An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6, visionOS 2.6. Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory.

CWE

CWE-787 — CWE-787 Out-of-bounds Write

Affected

Apple / iOS and iPadOS — v=0 <18.6 [affected]
Apple / macOS — v=0 <15.6 [affected]
Apple / tvOS — v=0 <18.6 [affected]
Apple / visionOS — v=0 <2.6 [affected]

CVSS

(none)

References

https://support.apple.com/en-us/124147
https://support.apple.com/en-us/124149
https://support.apple.com/en-us/124153
https://support.apple.com/en-us/124154

Source

cvelistV5-main/cves/2025/43xxx/CVE-2025-43224.json