Description
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.7, macOS Sequoia 15.4, macOS Sonoma 14.7.6, macOS Ventura 13.7.6, tvOS 18.4, visionOS 2.4, watchOS 11.4. Processing a maliciously crafted file may lead to a denial-of-service or potentially disclose memory contents.
Published: 2025-05-12
Score: 5.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Denial of Service and Potential Memory Disclosure
Action: Immediate Patch
AI Analysis

Impact

A malformed file can trigger an out‑of‑bounds read in several Apple operating systems. The insufficient input validation allows the OS to read beyond the intended buffer, which can cause a crash or expose contents of adjacent memory locations. The result is either a denial of service or the leaking of potentially sensitive data. The weakness is classified as CWE‑125.

Affected Systems

Affected Apple systems include iOS, iPadOS, macOS, tvOS, visionOS, and watchOS. The issue is corrected in iOS 18.4, iPadOS 18.4 and 17.7.7, macOS Sequoia 15.4, macOS Sonoma 14.7.6, macOS Ventura 13.7.6, tvOS 18.4, visionOS 2.4, and watchOS 11.4. Users running earlier releases are vulnerable.

Risk and Exploitability

The CVSS score of 5.5 indicates a medium severity, while the EPSS score of less than 1% shows a very low current exploitation probability. The vulnerability is not listed in CISA's KEV catalog, further suggesting limited known exploitation. The likely attack vector involves a maliciously crafted file being processed by the OS, which could be local or delivered remotely if the file is handled by a service exposed to external input. Successful exploitation may lead to a system crash or disclosure of memory contents, but would require the attacker to supply the crafted file and trigger the vulnerable processing path.

Generated by OpenCVE AI on April 28, 2026 at 01:47 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest OS updates: iOS 18.4, iPadOS 18.4 or 17.7.7, macOS Sequoia 15.4, macOS Sonoma 14.7.6, macOS Ventura 13.7.6, tvOS 18.4, visionOS 2.4, or watchOS 11.4
  • Disallow or delete untrusted or unknown files that may be processed by these operating systems
  • Verify that no legacy applications or services still accept unvalidated input from external sources that could invoke the vulnerable path

Generated by OpenCVE AI on April 28, 2026 at 01:47 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2025-14629 An out-of-bounds read was addressed with improved input validation. This issue is fixed in iPadOS 17.7.7, macOS Ventura 13.7.6, macOS Sonoma 14.7.6. Processing a maliciously crafted file may lead to a denial-of-service or potentially disclose memory contents.
History

Thu, 02 Apr 2026 20:30:00 +0000

Type Values Removed Values Added
Description An out-of-bounds read was addressed with improved input validation. This issue is fixed in iPadOS 17.7.7, macOS Ventura 13.7.6, macOS Sonoma 14.7.6. Processing a maliciously crafted file may lead to a denial-of-service or potentially disclose memory contents. An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.7, macOS Sequoia 15.4, macOS Sonoma 14.7.6, macOS Ventura 13.7.6, tvOS 18.4, visionOS 2.4, watchOS 11.4. Processing a maliciously crafted file may lead to a denial-of-service or potentially disclose memory contents.
References

Mon, 03 Nov 2025 20:30:00 +0000

Type Values Removed Values Added
References

Tue, 27 May 2025 14:15:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple ipados
Apple macos
CPEs cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
Vendors & Products Apple
Apple ipados
Apple macos

Tue, 13 May 2025 20:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-125
Metrics cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 12 May 2025 21:45:00 +0000

Type Values Removed Values Added
Description An out-of-bounds read was addressed with improved input validation. This issue is fixed in iPadOS 17.7.7, macOS Ventura 13.7.6, macOS Sonoma 14.7.6. Processing a maliciously crafted file may lead to a denial-of-service or potentially disclose memory contents.
References

Subscriptions

Apple Ipados Macos
cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2026-04-02T18:18:56.792Z

Reserved: 2025-03-27T16:13:58.313Z

Link: CVE-2025-31196

cve-icon Vulnrichment

Updated: 2025-05-13T20:06:52.283Z

cve-icon NVD

Status : Modified

Published: 2025-05-12T22:15:21.453

Modified: 2026-04-02T19:19:45.600

Link: CVE-2025-31196

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T02:00:15Z

Weaknesses