Vulnerability Details CVE-2025-43353
The issue was addressed with improved bounds checks. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. Processing a maliciously crafted string may lead to heap corruption.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 1.0%
CVSS Severity
CVSS v3 Score 5.5
References
Products affected by CVE-2025-43353
-
cpe:2.3:o:apple:macos:14.0
-
cpe:2.3:o:apple:macos:14.1
-
cpe:2.3:o:apple:macos:14.1.1
-
cpe:2.3:o:apple:macos:14.1.2
-
cpe:2.3:o:apple:macos:14.2
-
cpe:2.3:o:apple:macos:14.2.1
-
cpe:2.3:o:apple:macos:14.3
-
cpe:2.3:o:apple:macos:14.4
-
cpe:2.3:o:apple:macos:14.4.1
-
cpe:2.3:o:apple:macos:14.5
-
cpe:2.3:o:apple:macos:14.6
-
cpe:2.3:o:apple:macos:14.7
-
cpe:2.3:o:apple:macos:14.7.1
-
cpe:2.3:o:apple:macos:14.7.2
-
cpe:2.3:o:apple:macos:14.7.3
-
cpe:2.3:o:apple:macos:14.7.4
-
cpe:2.3:o:apple:macos:14.7.5
-
cpe:2.3:o:apple:macos:14.7.6
-
cpe:2.3:o:apple:macos:14.7.7
-
cpe:2.3:o:apple:macos:14.7.8
-
cpe:2.3:o:apple:macos:15.0
-
cpe:2.3:o:apple:macos:15.1
-
cpe:2.3:o:apple:macos:15.1.1
-
cpe:2.3:o:apple:macos:15.2
-
cpe:2.3:o:apple:macos:15.3
-
cpe:2.3:o:apple:macos:15.3.1
-
cpe:2.3:o:apple:macos:15.4
-
cpe:2.3:o:apple:macos:15.4.1
-
cpe:2.3:o:apple:macos:15.5
-
cpe:2.3:o:apple:macos:15.6
-
cpe:2.3:o:apple:macos:15.6.1