CVE-2025-43210_CVE-2025-43210

6.3 / 10

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

Description

An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 18.6 and iPadOS 18.6, iPadOS 17.7.9, macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7, tvOS 18.6, visionOS 2.6, watchOS 11.6. Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory.

Basic Information

ID CVE-2025-43210

Source apple

Published Apr 2, 2026 at 18:21

Modified Apr 2, 2026 at 19:42

Affected Product

Vendor Apple

Product iOS and iPadOS

Affected Versions Apple iOS and iPadOS 0
Apple iPadOS 0
Apple macOS 0
Apple macOS 0
Apple macOS 0
Apple tvOS 0
Apple visionOS 0
Apple watchOS 0

CWE Classification

CWE-125 CWE-787

References

{
    "lastseen": "",
    "description": "An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 18.6 and iPadOS 18.6, iPadOS 17.7.9, macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7, tvOS 18.6, visionOS 2.6, watchOS 11.6. Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory.",
    "published": "2026-04-02T18:21:26.395Z",
    "modified": "2026-04-02T19:42:30.658Z",
    "type": "cve",
    "title": "CVE-2025-43210",
    "source": "apple",
    "references": "https://support.apple.com/en-us/124147\nhttps://support.apple.com/en-us/124148\nhttps://support.apple.com/en-us/124149\nhttps://support.apple.com/en-us/124150\nhttps://support.apple.com/en-us/124151\nhttps://support.apple.com/en-us/124153\nhttps://support.apple.com/en-us/124154\nhttps://support.apple.com/en-us/124155",
    "id": "CVE-2025-43210",
    "bulletinFamily": "",
    "cwe": [
        "CWE-125",
        "CWE-787"
    ],
    "cvelist": null,
    "sourceData": "Apple iOS and iPadOS 0\nApple iPadOS 0\nApple macOS 0\nApple macOS 0\nApple macOS 0\nApple tvOS 0\nApple visionOS 0\nApple watchOS 0",
    "sourceHref": "",
    "cvss": {
        "score": 6.3,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "iOS and iPadOS",
    "version": "0",
    "vendor": "Apple",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}