Description
A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. An app may be able to cause unexpected system termination.
Published: 2025-09-15
Score: 5.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: System Crash / Denial of Service
Action: Apply Patch
AI Analysis

Impact

A buffer overflow in macOS software was identified, where insufficient bounds checking allowed an attacker to trigger arbitrary memory corruption, leading to unexpected system termination. The vulnerability specifically impacted the system’s ability to safely handle buffer boundaries, and once exploited, could cause the operating system to crash, interrupting user activity and potentially leading to data loss or service interruption. The weakness is classified as CWE‑120, which typically indicates untrusted input is written beyond an intended buffer limit.

Affected Systems

Apple’s macOS operating system is affected, with the flaw present in versions older than macOS Sequoia 15.7, macOS Sonoma 14.8, and macOS Tahoe 26. Users running any of these earlier releases are potentially vulnerable; the fix is delivered in the listed newer updates.

Risk and Exploitability

The CVSS score of 5.5 suggests moderate severity. The EPSS score of less than 1% indicates exploitation is currently unlikely, and the vulnerability is not listed in the CISA KEV catalog. While the description does not specify how the attacker would gain a foothold, it is reasonable to infer that the attack vector involves a malicious or compromised application running with user privileges, rather than an external network-based exploit.

Generated by OpenCVE AI on April 27, 2026 at 23:51 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade to the latest macOS release (Sequoia 15.7, Sonoma 14.8, Tahoe 26 or newer) to obtain the bounds‑checking fix
  • Ensure all applications are current and avoid running unknown or untrusted software that could trigger the overflow
  • Restart the system after updating to clear any residual instability and confirm that the crash issue no longer occurs

Generated by OpenCVE AI on April 27, 2026 at 23:51 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2025-29278 A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. An app may be able to cause unexpected system termination.
History

Tue, 28 Apr 2026 00:15:00 +0000

Type Values Removed Values Added
Title Buffer Overflow Causing Unexpected System Termination in macOS

Thu, 02 Apr 2026 20:30:00 +0000

Type Values Removed Values Added
Description A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Sonoma 14.8, macOS Sequoia 15.7. An app may be able to cause unexpected system termination. A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. An app may be able to cause unexpected system termination.
References

Tue, 04 Nov 2025 02:30:00 +0000

Type Values Removed Values Added
References

Tue, 04 Nov 2025 01:45:00 +0000

Type Values Removed Values Added
Description A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. An app may be able to cause unexpected system termination. A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Sonoma 14.8, macOS Sequoia 15.7. An app may be able to cause unexpected system termination.

Mon, 03 Nov 2025 19:30:00 +0000

Type Values Removed Values Added
References

Wed, 17 Sep 2025 14:00:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*

Wed, 17 Sep 2025 11:00:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple macos
Apple macos Sequoia
Apple macos Sonoma
Apple macos Tahoe
Vendors & Products Apple
Apple macos
Apple macos Sequoia
Apple macos Sonoma
Apple macos Tahoe

Tue, 16 Sep 2025 18:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-120
Metrics cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 15 Sep 2025 22:45:00 +0000

Type Values Removed Values Added
Description A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. An app may be able to cause unexpected system termination.
References

Subscriptions

Apple Macos Macos Sequoia Macos Sonoma Macos Tahoe
cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2026-04-02T18:25:38.727Z

Reserved: 2025-04-16T15:24:37.106Z

Link: CVE-2025-43312

cve-icon Vulnrichment

Updated: 2025-11-03T18:10:57.393Z

cve-icon NVD

Status : Modified

Published: 2025-09-15T23:15:34.300

Modified: 2026-04-02T19:20:24.257

Link: CVE-2025-43312

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T00:00:18Z

Weaknesses