PT-2025-31353 · Apple+9 · Visionos+15

Hexrabbit

·

Published

2025-07-29

·

Updated

2025-11-25

·

CVE-2025-43265

CVSS v3.1

4.0

Medium

VectorAV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Name of the Vulnerable Software and Affected Versions watchOS versions prior to 11.6 visionOS versions prior to 2.6 iOS versions prior to 18.6 iPadOS versions prior to 18.6 macOS Sequoia versions prior to 15.6 tvOS versions prior to 18.6
Description An out-of-bounds read issue was addressed through enhanced input validation. Processing specially crafted web content could potentially reveal internal application states.
Recommendations Update watchOS to version 11.6 or later. Update visionOS to version 2.6 or later. Update iOS to version 18.6 or later. Update iPadOS to version 18.6 or later. Update macOS Sequoia to version 15.6 or later. Update tvOS to version 18.6 or later.

Fix

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

ALSA-2025:13780
ALSA-2025:13782
BDU:2025-11466
CESA-2025_13780
CVE-2025-43265
DLA-4276-1
DSA-5978-1
INFSA-2025_13780
INFSA-2025_13782
MGASA-2025-0313
RHSA-2025:13780
RHSA-2025:13782
RHSA-2025:14421
RHSA-2025:14422
RHSA-2025:14423
RHSA-2025:14432
RHSA-2025:14433
RHSA-2025:14434
RHSA-2025:14486
RHSA-2025_13780
RHSA-2025_13782
SUSE-SU-2025:02765-1
SUSE-SU-2025:02766-1
SUSE-SU-2025:02777-1
SUSE-SU-2025:02973-1
SUSE-SU-2025_02765-1
SUSE-SU-2025_02766-1
SUSE-SU-2025_02777-1
SUSE-SU-2025_02973-1
USN-7702-1

Affected Products

Almalinux
Astra Linux
Centos
Debian
Linuxmint
Apple Macos
Red Hat
Rocky Linux
Suse
Ubuntu
Ios
Ipados
Macos Sequoia
Tvos
Visionos
Watchos