CVE-2025-43265_CVE-2025-43265

4 / 10

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Description

An out-of-bounds read was addressed with improved input validation. This issue is fixed in Safari 18.6, watchOS 11.6, visionOS 2.6, iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6. Processing maliciously crafted web content may disclose internal states of the app.

Basic Information

ID CVE-2025-43265

Source apple

Published Jul 29, 2025 at 23:54

Modified Jul 30, 2025 at 22:57

Affected Product

Vendor Apple

Product Safari

Version unspecified

Affected Versions Apple Safari unspecified
Apple macOS unspecified
Apple tvOS unspecified
Apple visionOS unspecified
Apple watchOS unspecified
Apple iOS and iPadOS unspecified

CWE Classification

CWE-125

References

{
    "lastseen": "",
    "description": "An out-of-bounds read was addressed with improved input validation. This issue is fixed in Safari 18.6, watchOS 11.6, visionOS 2.6, iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6. Processing maliciously crafted web content may disclose internal states of the app.",
    "published": "2025-07-29T23:54:27.424Z",
    "modified": "2025-07-30T22:57:04.468Z",
    "type": "cve",
    "title": "CVE-2025-43265",
    "source": "apple",
    "references": "https://support.apple.com/en-us/124152\nhttps://support.apple.com/en-us/124149\nhttps://support.apple.com/en-us/124153\nhttps://support.apple.com/en-us/124154\nhttps://support.apple.com/en-us/124155\nhttps://support.apple.com/en-us/124147",
    "id": "CVE-2025-43265",
    "bulletinFamily": "",
    "cwe": [
        "CWE-125"
    ],
    "cvelist": null,
    "sourceData": "Apple Safari unspecified\nApple macOS unspecified\nApple tvOS unspecified\nApple visionOS unspecified\nApple watchOS unspecified\nApple iOS and iPadOS unspecified",
    "sourceHref": "",
    "cvss": {
        "score": 4,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Safari",
    "version": "unspecified",
    "vendor": "Apple",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}