CVE-2025-43374

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, visionOS 2.5, macOS Sonoma 14.7.3, macOS Ventura 13.7.3, macOS Sequoia 15.5, watchOS 11.5. An attacker in physical proximity may be able to cause an out-of-bounds read in kernel memory.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.3 MEDIUM
PHYSICAL
LOW
NONE
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
appleCNA
---
---
CISA-ADPADP
4.3 MEDIUM
PHYSICAL
LOW
NONE
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Base Score
CVSS 3.x
EPSS Score
Percentile: 8%
VendorProductVersion
appleipados
𝑥
< 17.7.7
appleipados
18.0 ≤
𝑥
< 18.5
appleiphone_os
𝑥
< 18.5
applemacos
𝑥
< 13.7.3
applemacos
14.0 ≤
𝑥
< 14.7.3
applemacos
15.0 ≤
𝑥
< 15.5
applevisionos
𝑥
< 2.5
applewatchos
𝑥
< 11.5
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://support.apple.com/en-us/122069
https://support.apple.com/en-us/122070
https://support.apple.com/en-us/122404
https://support.apple.com/en-us/122405
https://support.apple.com/en-us/122716
https://support.apple.com/en-us/122721
https://support.apple.com/en-us/122722