CVE 8.8 HIGH

CVE-2025-43431_CVE-2025-43431

November 4, 2025 invoker category_cve

8.8 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Description

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.1, visionOS 26.1, watchOS 26.1, iOS 26.1 and iPadOS 26.1, tvOS 26.1. Processing maliciously crafted web content may lead to memory corruption.

AI Analysis

Memory corruption vulnerability in Safari due to improper memory handling, allowing maliciously crafted web content to cause memory corruption.

Basic Information

ID CVE-2025-43431

Source apple

Published Nov 4, 2025 at 01:17

Modified Nov 4, 2025 at 13:04

Affected Product

Vendor Apple

Product Safari

Version unspecified

Affected Versions Apple Safari unspecified
Apple tvOS unspecified
Apple visionOS unspecified
Apple watchOS unspecified
Apple iOS and iPadOS unspecified

AI Assessment

AI Score 8.8 / 10

AI Severity High

Vendor Apple

Product Safari

Version unspecified

References

{
    "lastseen": "",
    "description": "The issue was addressed with improved memory handling. This issue is fixed in Safari 26.1, visionOS 26.1, watchOS 26.1, iOS 26.1 and iPadOS 26.1, tvOS 26.1. Processing maliciously crafted web content may lead to memory corruption.",
    "published": "2025-11-04T01:17:31.690Z",
    "modified": "2025-11-04T13:04:50.340Z",
    "type": "cve",
    "title": "CVE-2025-43431",
    "source": "apple",
    "references": "https://support.apple.com/en-us/125640\nhttps://support.apple.com/en-us/125637\nhttps://support.apple.com/en-us/125638\nhttps://support.apple.com/en-us/125639\nhttps://support.apple.com/en-us/125632",
    "id": "CVE-2025-43431",
    "bulletinFamily": "",
    "cwe": null,
    "cvelist": null,
    "sourceData": "Apple Safari unspecified\nApple tvOS unspecified\nApple visionOS unspecified\nApple watchOS unspecified\nApple iOS and iPadOS unspecified",
    "sourceHref": "",
    "cvss": {
        "score": 8.8,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Safari",
    "version": "unspecified",
    "vendor": "Apple",
    "ai_description": "Memory corruption vulnerability in Safari due to improper memory handling, allowing maliciously crafted web content to cause memory corruption.",
    "ai_severity": "High",
    "ai_vendor": "Apple",
    "ai_product": "Safari",
    "ai_version": "unspecified",
    "ai_score": 8.8
}

💭 Join the Security Discussion ❌ Cancel Reply