CVE-2025-43218

Description

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Sequoia 15.6. Processing a maliciously crafted USD file may disclose memory contents.

PUBLISHED Reserved 2025-04-16 | Published 2025-07-29 | Updated 2026-04-02 | Assigner apple

Problem types

Processing a maliciously crafted USD file may disclose memory contents

Product status

References

seclists.org/fulldisclosure/2025/Jul/32

support.apple.com/en-us/124149

cve.org (CVE-2025-43218)

nvd.nist.gov (CVE-2025-43218)

Download JSON