CVE-2025-43392 | THREATINT

Description

The issue was addressed with improved handling of caches. This issue is fixed in tvOS 26.1, watchOS 26.1, macOS Tahoe 26.1, iOS 26.1 and iPadOS 26.1, Safari 26.1, iOS 18.7.2 and iPadOS 18.7.2, visionOS 26.1. A website may exfiltrate image data cross-origin.

PUBLISHED Reserved 2025-04-16 | Published 2025-11-04 | Updated 2025-12-17 | Assigner apple

Problem types

A website may exfiltrate image data cross-origin

Product status

Any version before 26.1

affected

Any version before 26.1

affected

Any version before 26.1

affected

Any version before 26.1

affected

Any version before 26.1

affected

Any version before 26.1

affected

Any version before 18.7

affected

References

support.apple.com/en-us/125640

support.apple.com/en-us/125637

support.apple.com/en-us/125634

support.apple.com/en-us/125638

support.apple.com/en-us/125639

support.apple.com/en-us/125632

support.apple.com/en-us/125633

cve.org (CVE-2025-43392)

nvd.nist.gov (CVE-2025-43392)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.

help @ threatint.eu