CVE-2025-43529
AI description
CVE-2025-43529 is a use-after-free vulnerability in WebKit that can be exploited by processing maliciously crafted web content. Google's Threat Analysis Group discovered this flaw. Apple has released security updates for iOS, iPadOS, macOS, tvOS, watchOS, visionOS, and Safari to address this vulnerability, as it may have been exploited in targeted attacks against specific individuals using versions of iOS before iOS 26. Devices impacted include iPhone 11 and later, iPad Pro 12.9-inch (3rd generation and later), iPad Pro 11-inch (1st generation and later), iPad Air (3rd generation and later), iPad (8th generation and later), and iPad mini (5th generation and later).
- Description
- -
Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.
- Hype score
18
Apple lança atualizações urgentes para corrigir duas zero-days usadas em ataques sofisticados: as falhas CVE-2025-43529 e CVE-2025-14174 afetam o WebKit em iPhones e iPads, exploradas para espionagem direcionada, exigindo atualização imediata dos usuários. https://t.co/ISp0
@caveiratech
15 Dec 2025
6 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Warning: Actively exploited vulnerabilities in #Apple WebKit. CVE-2025-14174 and CVE-2025-43529. Exploitation could lead to arbitrary code execution via malicious web content! Check for the latest updates! #Patch #Patch #Patch More info: https://t.co/CgfPxbCZ4j
@CCBalert
15 Dec 2025
87 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Apple, aktif olarak istismar edilen iki WebKit güvenlik açığını yamaladı. CVE-2025-43529 (use-after-free) dahil bu açıklar iOS, macOS, Safari'yi etkiliyor. Hemen güncelleme yapın! #SiberGüvenlik #Apple #Güncelleme https://t.co/hXwLV4vgw9
@osmanmuratgul
15 Dec 2025
2 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Update your Apple devices to fix actively exploited vulnerabilities! (CVE-2025-14174, CVE-2025-43529): Apple has issued security updates with fixes for two WebKit vulnerabilities (CVE-2025-14174, CVE-2025-43529) that have been exploited as zero-days.… https://t.co/WgeUqs9MMW ht
@shah_sheikh
15 Dec 2025
6 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
The severity is increased for this new vulnerability affecting Apple iOS and iPadOS (CVE-2025-43529) https://t.co/1LK1HdUhwh
@vuldb
15 Dec 2025
30 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Apple(アップル) iOS/iPadOS 26.2を公開 標的型攻撃で悪用中のWebKitゼロデイ2件を含む多数の脆弱性を修正(CVE-2025-43529,CVE-2025-14174) https://t.co/OgaZGs8Eqy #セキュリティ対策Lab #セキュリティ #Security
@securityLab_jp
15 Dec 2025
137 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
Apple ha liberado actualizaciones críticas tras confirmarse la explotación activa de dos vulnerabilidades severas en el motor WebKit (CVE-2025-43529 y CVE-2025-14174). Los fallos permiten ejecución de código arbitrario al procesar contenido web especialmente diseñado, https:
@tpx_Security
14 Dec 2025
102 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
This issue may have been exploited in an extremely sophisticated attack against specific targeted individuals on versions of iOS before iOS 26. CVE-2025-43529 is a WebKit use-after-free remote code execution flaw that can be exploited by processing maliciously crafted web https:
@blackorbird
14 Dec 2025
13148 Impressions
13 Retweets
93 Likes
42 Bookmarks
1 Reply
2 Quotes
This issue may have been exploited in an extremely sophisticated attack against specific targeted individuals on versions of iOS before iOS 26. CVE-2025-43529 is a WebKit use-after-free remote code execution flaw that can be exploited by processing maliciously crafted web https:
@blackorbird
14 Dec 2025
469 Impressions
0 Retweets
8 Likes
1 Bookmark
0 Replies
0 Quotes
This issue may have been exploited in an extremely sophisticated attack against specific targeted individuals on versions of iOS before iOS 26. CVE-2025-43529 is a WebKit use-after-free remote code execution flaw that can be exploited by processing maliciously crafted web https:
@blackorbird
14 Dec 2025
90 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
برای iPhone و iPad دو آسیب پذیری با کدهای شناسایی CVE-2025-43529 و CVE-2025-14174 منتشر شده است. بیشتر دیوایس های آیفون شامل iPhone 11 و ورژن های بالاتر دارای این آسیب پذیری ها می
@EthicalSafe
14 Dec 2025
27 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
AppleがWebKitの2つのゼロデイ (CVE-2025-43529, CVE-2025-14174) を修正。特定の標的ユーザを狙った高度攻撃で既に悪用の可能性あり。iOS/iPadOS/macOSの即時アップデートを。#Apple #WebKit #ZeroDay https://t.co/Bab8bqZAVO
@01ra66it
14 Dec 2025
512 Impressions
0 Retweets
4 Likes
2 Bookmarks
0 Replies
0 Quotes
- CVE-2025-43529 a UAF bug that may lead to arbitrary code execution when processing maliciously crafted web content - CVE-2025-14174 memory corruption bug when processing maliciously crafted web content
@minacrissDev_
13 Dec 2025
508 Impressions
1 Retweet
2 Likes
2 Bookmarks
0 Replies
0 Quotes
yesterday Apple released patches for 2 Webkit bugs - CVE-2025-43529 a UAF bug that may lead to arbitrary code execution when processing maliciously crafted web content - CVE-2025-14174 memory corruption bug when processing maliciously crafted web content https://t.co/K2JKGBQuKk
@BrutalSam_
13 Dec 2025
8017 Impressions
5 Retweets
76 Likes
12 Bookmarks
3 Replies
1 Quote
csirt_it: !! #Exploited #Apple: aggiornamenti di sicurezza risolvono diverse vulnerabilità, di cui 2 di tipo #0day - CVE-2025-14174 e CVE-2025-43529 Rischio: 🔴 Tra le tipologie 🔸 Remote Code Execution 🔸 Tampering 🔗 https://t.co/nQDtADZGfr 🔄 … https://t.c
@Vulcanux_
13 Dec 2025
45 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Apple patches two critical WebKit flaws (CVE-2025-43529 & CVE-2025-14174) exploited in the wild, affecting iOS, macOS, and more. CVE-2025-14174 was also fixed by Chrome earlier this year. #WebKitFix #AppleUpdate #USA https://t.co/ghVsfpw8p9
@TweetThreatNews
13 Dec 2025
115 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Apple patches two critical WebKit zero-day flaws (CVE-2025-43529 & CVE-2025-14174) exploited in targeted, sophisticated attacks affecting multiple devices. Google Chrome also coordinated fixes. #WebKitFlaws #TargetedAttacks #USA https://t.co/AvOmWqly6l
@TweetThreatNews
13 Dec 2025
4 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Apple緊急対応:ゼロデイ2件が「高度な標的型攻撃」で悪用、今すぐアップデートを https://t.co/NVqWQNOckE AppleがWebKitのゼロデイ2件(CVE-2025-43529/CVE-2025-14174)を修正。iOS 26以前を使う“特定個人”への極めて高度
@cloudsec_news
13 Dec 2025
2 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
📌 أصدرت Apple تحديثات أمان لأنظمة iOS وiPadOS وmacOS وtvOS وwatchOS وvisionOS ومتصفح Safari، لمعالجة ثغرتين أمنيّتين تم استغلالهما. تشمل الثغرة واحدة متماثلة تم إصلاحها مؤخرً
@Cybercachear
13 Dec 2025
90 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Patch Alert: Critical Apple WebKit Zero-Days Apple has released iOS 26.2 to address two actively exploited flaws linked to targeted spyware campaigns: CVE-2025-43529: Use-after-free allowing arbitrary code execution via malicious web content (Credited to Google TAG)CVE-2025-14174
@DarkCyberXX
13 Dec 2025
110 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
📣 EMERGENCY UPDATES 📣 Apple pushed additional updates for 2 zero-days that may have been actively exploited. 🐛 CVE-2025-14174 (WebKit) additional patches, 🐛 CVE-2025-43529 (WebKit) additional patches: - Safari 26.2
@ApplSec
12 Dec 2025
348 Impressions
0 Retweets
5 Likes
1 Bookmark
0 Replies
0 Quotes
📣 EMERGENCY UPDATES 📣 Apple pushed updates for 2 new zero-days that may have been actively exploited. 🐛 CVE-2025-14174 (WebKit), 🐛 CVE-2025-43529 (WebKit): - iOS and iPadOS 18.7.3 - iOS and iPadOS 26.2 - macOS Tahoe 26.2 - tvOS 26.2 - visionOS 26.2 - watchOS 26.2
@ApplSec
12 Dec 2025
882 Impressions
2 Retweets
9 Likes
2 Bookmarks
0 Replies
0 Quotes