PT-2025-44889 · Apple+7 · Ipados+9

Phil Beauvoir

Published

2025-11-03

Updated

2026-01-20

CVE-2025-43458

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions iOS versions prior to 18.7.2 iPadOS versions prior to 18.7.2

Description Processing maliciously crafted web content may lead to an unexpected process crash due to improper state management.

Recommendations Update to iOS version 18.7.2. Update to iPadOS version 18.7.2.

Fix

DoS

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-703CWE-20

Related Identifiers

ALSA-2025:22789

ALSA-2025:22790

BDU:2026-03307

CVE-2025-43458

DLA-4399-1

DSA-6074-1

MGASA-2025-0325

OPENSUSE-SU-2026:20065-1

SUSE-SU-2025:4416-1

SUSE-SU-2025:4423-1

SUSE-SU-2026:0021-1

SUSE-SU-2026:20102-1

USN-7941-1

Affected Products

Almalinux

Centos

Debian

Linuxmint

Apple Macos

Red Hat

Rocky Linux

Ubuntu

Ios

Ipados

PT-2025-44889 · Apple+7 · Ipados+9

CVE-2025-43458

Weakness Enumeration

Related Identifiers

Affected Products

References · 146