CVE-2025-43427

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions iOS versions prior to 26.1 iPadOS versions prior to 26.1 tvOS versions prior to 26.1 Safari versions prior to 26.1 visionOS versions prior to 26.1

Description A flaw exists due to improper state management. Processing specially designed web content can cause the application to crash unexpectedly.

Recommendations Update iOS to version 26.1. Update iPadOS to version 26.1. Update tvOS to version 26.1. Update Safari to version 26.1. Update visionOS to version 26.1.

Fix

DoS

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-703CWE-20

Related Identifiers

ALSA-2025:22789

ALSA-2025:22790

BDU:2026-03298

CVE-2025-43427

DLA-4394-1

DSA-6070-1

MGASA-2025-0319

OPENSUSE-SU-2026:20065-1

SUSE-SU-2025:4416-1

SUSE-SU-2025:4423-1

SUSE-SU-2026:0021-1

SUSE-SU-2026:20102-1

USN-7914-1

Affected Products

Almalinux

Centos

Debian

Linuxmint

Apple Macos

Red Hat

Rocky Linux

Safari

Ubuntu

Ios

Ipados

Tvos

Visionos

CVE-2025-43427

Weakness Enumeration

Related Identifiers

Affected Products

References · 152