Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-43338

An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in macOS Sonoma 14.8.2, iOS 26 and iPadOS 26. Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory.

Published

2025-11-04T02:15:40.717

Last Modified

2025-11-04T16:57:04.440

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 7.1 (HIGH)

Weaknesses

Type: Secondary
CWE-79

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	apple	ipados	< 26.0	Yes
Operating System	apple	iphone_os	< 26.0	Yes
Operating System	apple	macos	< 14.8.2	Yes

References

https://support.apple.com/en-us/125108 Release Notes, Vendor Advisory ([email protected])
https://support.apple.com/en-us/125636 Release Notes, Vendor Advisory ([email protected])