CVE-2025-43338

🗓️ 04 Nov 2025 01:17:18Reported by appleType

Out-of-bounds access fixed with improved bounds checks in macos sonoma 14.8.2, ios 26, ipad os 26; malicious media may crash apps or memory.

Reporter	Title	Published	Views	Family All 16
Apple	About the security content of macOS Sonoma 14.8.2	3 Nov 202500:00	–	apple
Apple	About the security content of iOS 26 and iPadOS 26	15 Sep 202500:00	–	apple
Apple	About the security content of macOS Sonoma 14.8.4	11 Feb 202600:00	–	apple
Apple	About the security content of macOS Sonoma 14.8.2	3 Nov 202500:00	–	apple
Tenable Nessus	Apple iOS < 26 Multiple Vulnerabilities (125108)	15 Sep 202500:00	–	nessus
Tenable Nessus	macOS 14.x < 14.8.2 Multiple Vulnerabilities (125636)	3 Nov 202500:00	–	nessus
Tenable Nessus	macOS 14.x < 14.8.4 Multiple Vulnerabilities (126350)	11 Feb 202600:00	–	nessus
Circl	CVE-2025-43338	2 Apr 202622:20	–	circl
CNNVD	Apple多款产品安全漏洞	4 Nov 202500:00	–	cnnvd
CVE	CVE-2025-43338	4 Nov 202501:17	–	cve

[
  {
    "vendor": "Apple",
    "product": "iOS and iPadOS",
    "versions": [
      {
        "version": "0",
        "status": "affected",
        "lessThan": "26",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "Apple",
    "product": "macOS",
    "versions": [
      {
        "version": "0",
        "status": "affected",
        "lessThan": "14.8.2",
        "versionType": "custom"
      },
      {
        "version": "0",
        "status": "affected",
        "lessThan": "14.8.4",
        "versionType": "custom"
      },
      {
        "version": "0",
        "status": "affected",
        "lessThan": "26",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
support	www.support.apple.com/en-us/126350
support	www.support.apple.com/en-us/125108
support	www.support.apple.com/en-us/125636
support	www.support.apple.com/en-us/125110

02 Apr 2026 18:22Current

EPSS0.00024