CVE-2025-43218

Description

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Sequoia 15.6. Processing a maliciously crafted USD file may disclose memory contents.

Reserved 2025-04-16 | Published 2025-07-29 | Updated 2025-07-29 | Assigner apple

Problem types

Processing a maliciously crafted USD file may disclose memory contents

Product status

Any version before 15.6
affected

References

support.apple.com/en-us/124149

cve.org (CVE-2025-43218)

nvd.nist.gov (CVE-2025-43218)

Download JSON