CVE-2025-31281 | THREATINT

Description

An input validation issue was addressed with improved memory handling. This issue is fixed in visionOS 2.6, tvOS 18.6, macOS Sequoia 15.6, iOS 18.6 and iPadOS 18.6. Processing a maliciously crafted file may lead to unexpected app termination.

Reserved 2025-03-27 | Published 2025-07-29 | Updated 2025-07-29 | Assigner apple

Problem types

Processing a maliciously crafted file may lead to unexpected app termination

Product status

Any version before 15.6

affected

Any version before 18.6

affected

Any version before 2.6

affected

Any version before 18.6

affected

References

support.apple.com/en-us/124149

support.apple.com/en-us/124153

support.apple.com/en-us/124154

support.apple.com/en-us/124147

cve.org (CVE-2025-31281)

nvd.nist.gov (CVE-2025-31281)

Download JSON