CVE-2025-43374_CVE-2025-43374

4.3 / 10

MEDIUM

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Description

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, visionOS 2.5, macOS Sonoma 14.7.3, macOS Ventura 13.7.3, macOS Sequoia 15.5, watchOS 11.5. An attacker in physical proximity may be able to cause an out-of-bounds read in kernel memory.

Basic Information

ID CVE-2025-43374

Source apple

Published Nov 21, 2025 at 21:22

Modified Nov 23, 2025 at 11:29

Affected Product

Vendor Apple

Product macOS

Version unspecified

Affected Versions Apple macOS unspecified
Apple macOS unspecified
Apple iPadOS unspecified
Apple iOS and iPadOS unspecified
Apple visionOS unspecified
Apple watchOS unspecified
Apple macOS unspecified

CWE Classification

CWE-121

References

{
    "lastseen": "",
    "description": "An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, visionOS 2.5, macOS Sonoma 14.7.3, macOS Ventura 13.7.3, macOS Sequoia 15.5, watchOS 11.5. An attacker in physical proximity may be able to cause an out-of-bounds read in kernel memory.",
    "published": "2025-11-21T21:22:23.229Z",
    "modified": "2025-11-23T11:29:17.964Z",
    "type": "cve",
    "title": "CVE-2025-43374",
    "source": "apple",
    "references": "https://support.apple.com/en-us/122069\nhttps://support.apple.com/en-us/122716\nhttps://support.apple.com/en-us/122405\nhttps://support.apple.com/en-us/122404\nhttps://support.apple.com/en-us/122721\nhttps://support.apple.com/en-us/122722\nhttps://support.apple.com/en-us/122070",
    "id": "CVE-2025-43374",
    "bulletinFamily": "",
    "cwe": [
        "CWE-121"
    ],
    "cvelist": null,
    "sourceData": "Apple macOS unspecified\nApple macOS unspecified\nApple iPadOS unspecified\nApple iOS and iPadOS unspecified\nApple visionOS unspecified\nApple watchOS unspecified\nApple macOS unspecified",
    "sourceHref": "",
    "cvss": {
        "score": 4.3,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "macOS",
    "version": "unspecified",
    "vendor": "Apple",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}