CVE-2025-43430

CVSS v3.1

4.3

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

Name of the Vulnerable Software and Affected Versions Safari versions prior to 26.1 visionOS versions prior to 26.1 watchOS versions prior to 26.1 iOS versions prior to 26.1 iPadOS versions prior to 26.1 tvOS versions prior to 26.1

Description Processing maliciously crafted web content may lead to an unexpected process crash due to improper state management.

Recommendations Update to Safari version 26.1 or later. Update to visionOS version 26.1 or later. Update to watchOS version 26.1 or later. Update to iOS version 26.1 or later. Update to iPadOS version 26.1 or later. Update to tvOS version 26.1 or later.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-703CWE-20

Related Identifiers

CESA-2025_22789

CVE-2025-43430

DLA-4394-1

DSA-6070-1

RHSA-2025_22789

RHSA-2025_22790

USN-7914-1

Affected Products

Almalinux

Centos

Debian

Linuxmint

Apple Macos

Red Hat

Safari

Ubuntu

Ios

Ipados

Tvos

Visionos

Watchos

CVE-2025-43430

Weakness Enumeration

Related Identifiers

Affected Products

References · 83