CVE-2025-43520

Published Dec 12, 2025

Last updated a day ago

Exploit known CVSS high 7.1

Overview

Description: A memory corruption issue was addressed with improved memory handling. This issue is fixed in watchOS 26.1, iOS 18.7.2 and iPadOS 18.7.2, macOS Tahoe 26.1, visionOS 26.1, tvOS 26.1, macOS Sonoma 14.8.2, macOS Sequoia 15.7.2, iOS 26.1 and iPadOS 26.1. A malicious application may be able to cause unexpected system termination or write kernel memory.
Source: product-security@apple.com
NVD status: Analyzed
Products: ipados, iphone_os, macos, tvos, visionos, watchos

Risk scores

CVSS 3.1

Type: Primary
Base score: 7.1
Impact score: 5.2
Exploitability score: 1.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
Severity: HIGH

Known exploits

Data from CISA

Vulnerability name: Apple Multiple Products Classic Buffer Overflow Vulnerability
Exploit added on: Mar 20, 2026
Exploit action due: Apr 3, 2026
Required action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Weaknesses

nvd@nist.gov: CWE-787
134c704f-9b21-4f2e-91b3-4a467353bcc0: CWE-120

Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.

Hype score: 23

Configurations

[
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "819E8F86-A336-49A2-853F-249459279A59",
            "versionEndExcluding": "18.7.2",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:apple:ipados:26.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "4173F942-2CF6-447E-A942-948F6EF6CE77",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "7B98B4A6-EFB0-4651-BF56-06917E7CEC85",
            "versionEndExcluding": "18.7.2",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:apple:iphone_os:26.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "E29A276A-7091-42B2-B893-6A5801A0716E",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "9827CBDC-8C03-46BA-B534-8533F0975804",
            "versionEndExcluding": "14.8.2",
            "versionStartIncluding": "14.0",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "4BE8199E-63D1-496C-B107-52853CFC2311",
            "versionEndExcluding": "15.7.2",
            "versionStartIncluding": "15.0",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:apple:macos:26.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "551159EE-8311-4A13-802D-85871DAB5E77",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "290E0D29-CB5B-45A7-9FE3-FD2030B1D1A4",
            "versionEndExcluding": "26.1",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "7DFD3616-65CA-4E5C-849C-3C20ACBCB610",
            "versionEndExcluding": "26.1",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "9F9D7F76-13FB-407C-94E5-221B93021568",
            "versionEndExcluding": "26.1",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  }
]

References

Sources include official advisories and independent security research.