PT-2025-44839 · Apple+7 · Ipados+9

Tom Van Goethem

·

Published

2025-11-03

·

Updated

2026-01-20

·

CVE-2025-43392

CVSS v2.0

5.0

Medium

VectorAV:N/AC:L/Au:N/C:P/I:N/A:N
Name of the Vulnerable Software and Affected Versions iOS versions prior to 18.7.2 iPadOS versions prior to 18.7.2
Description A website may be able to exfiltrate image data cross-origin due to improper handling of caches.
Recommendations Update to iOS version 18.7.2. Update to iPadOS version 18.7.2.

Fix

DoS

Weakness Enumeration

CWE-942CWE-524

Related Identifiers

ALSA-2025:22789
ALSA-2025:22790
BDU:2025-13928
CVE-2025-43392
DLA-4394-1
DSA-6070-1
MGASA-2025-0319
OPENSUSE-SU-2026:20065-1
SUSE-SU-2025:4416-1
SUSE-SU-2025:4423-1
SUSE-SU-2026:0021-1
SUSE-SU-2026:20102-1
USN-7914-1

Affected Products

Almalinux
Centos
Debian
Linuxmint
Apple Macos
Red Hat
Rocky Linux
Ubuntu
Ios
Ipados