PT-2025-37854 · Apple+9 · Ipados+13

Pawel Wylecial

Published

2025-09-15

Updated

2026-03-30

CVE-2025-43368

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Safari versions prior to 26 macOS Tahoe versions prior to 26 iOS versions prior to 26 iPadOS versions prior to 26

Description A use-after-free issue was addressed with improved memory management. Processing maliciously crafted web content may lead to an unexpected Safari crash.

Recommendations Update Safari to version 26 or later. Update macOS Tahoe to version 26 or later. Update iOS to version 26 or later. Update iPadOS to version 26 or later.

Fix

DoS

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2025:17802

ALSA-2025:18097

ALSA-2025:20922

BDU:2025-11295

CESA-2025_17802

CVE-2025-43368

DLA-4375-1

DSA-6042-1

INFSA-2025_17802

INFSA-2025_18097

INFSA-2025_20922

MGASA-2025-0313

OPENSUSE-SU-2026:20065-1

RHSA-2025_17802

RHSA-2025_18097

RHSA-2025_20922

SUSE-SU-2025:3700-1

SUSE-SU-2025:3701-1

SUSE-SU-2025:3905-1

SUSE-SU-2026:1139-1

SUSE-SU-2026:1150-1

SUSE-SU-2026:20102-1

USN-7817-1

ZDI-25-901

Affected Products

Almalinux

Centos

Debian

Java Platform

Linuxmint

Apple Macos

Red Hat

Rocky Linux

Safari

Suse

Ubuntu

Ios

Ipados

Macos Tahoe

CVE-2025-43368

Weakness Enumeration

Related Identifiers

Affected Products

References · 184