CVE-2025-43353 | THREATINT

Description

The issue was addressed with improved bounds checks. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. Processing a maliciously crafted string may lead to heap corruption.

PUBLISHED Reserved 2025-04-16 | Published 2025-09-15 | Updated 2025-09-18 | Assigner apple

Problem types

Processing a maliciously crafted string may lead to heap corruption

Product status

Any version before 14.8

affected

Any version before 26

affected

Any version before 15.7

affected

References

support.apple.com/en-us/125112

support.apple.com/en-us/125110

support.apple.com/en-us/125111

cve.org (CVE-2025-43353)

nvd.nist.gov (CVE-2025-43353)

Download JSON