PT-2025-44872 · Apple · Ipados+5

Rheza

Published

2025-11-03

Updated

2026-04-15

CVE-2025-43438

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions iOS versions prior to 18.7.2 iPadOS versions prior to 18.7.2 watchOS versions prior to 26.1 Safari versions prior to 26.1 visionOS versions prior to 26.1

Description A use-after-free issue exists due to improper memory management. Processing specially crafted web content may cause the Safari browser to crash unexpectedly.

Recommendations Update to iOS version 18.7.2 or later. Update to iPadOS version 18.7.2 or later. Update to watchOS version 26.1 or later. Update to Safari version 26.1 or later. Update to visionOS version 26.1 or later.

Fix

DoS

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

BDU:2025-13931

CVE-2025-43438

OPENSUSE-SU-2026:20518-1

SUSE-SU-2026:1139-1

SUSE-SU-2026:1150-1

SUSE-SU-2026:1364-1

SUSE-SU-2026:21180-1

ZDI-25-1007

Affected Products

Apple Macos

Safari

Ios

Ipados

Visionos

Watchos

PT-2025-44872 · Apple · Ipados+5

CVE-2025-43438

Weakness Enumeration

Related Identifiers

Affected Products

References · 88