Description
An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 18.7 and iPadOS 18.7, iOS 26 and iPadOS 26, macOS Tahoe 26, tvOS 26, visionOS 26, watchOS 26. Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory.
Published: 2025-09-15
Score: 5.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Memory corruption and application crash
Action: Update OS
AI Analysis

Impact

Apple platforms contain a bounds‑checking flaw that can be triggered when parsing a specially crafted media file; the issue enables out‑of‑bounds memory access (CWE‑125). An attacker who can supply the malicious file to a vulnerable device may cause an application to terminate unexpectedly or corrupt its own process memory, potentially leading to loss of integrity or availability. No evidence of remote code execution or privilege escalation is provided in the current description.

Affected Systems

The vulnerability affects Apple iOS and iPadOS devices, macOS, tvOS, visionOS, and watchOS. It is mitigated in iOS 18.7 and 26, iPadOS 18.7 and 26, macOS Tahoe 26, tvOS 26, visionOS 26, and watchOS 26.

Risk and Exploitability

The CVSS score of 5.5 classifies this as moderate severity; the EPSS score is below 1%, indicating a very low probability of exploitation in the near term. The vulnerability is not listed in the CISA KEV catalog. The likely attack vector involves the victim opening or otherwise interacting with a malicious media file on a device running an affected OS version. Successful exploitation would lead to application crashes or memory corruption but does not appear to provide broader system compromise.

Generated by OpenCVE AI on April 28, 2026 at 00:19 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Patch all Apple devices to the latest iOS, iPadOS, macOS, tvOS, visionOS, or watchOS releases that contain the bounds‑checking fix (18.7/26 for iOS and iPadOS, 26 for the other platforms).
  • Ensure that any third‑party applications which process media files on these platforms are also updated to versions released after the security fix.
  • If an OS update cannot be applied immediately, restrict the handling of external media by disabling automatic media processing features or limiting the file types that are accepted by user‑installed applications.

Generated by OpenCVE AI on April 28, 2026 at 00:19 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2025-29345 An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in tvOS 26, watchOS 26, iOS 18.7 and iPadOS 18.7, visionOS 26, macOS Tahoe 26, iOS 26 and iPadOS 26. Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory.
History

Tue, 28 Apr 2026 00:45:00 +0000

Type Values Removed Values Added
Title Out‑of‑Bounds Memory Access Triggered by Malicious Media Causing Application Crash

Thu, 02 Apr 2026 20:30:00 +0000

Type Values Removed Values Added
Description An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in tvOS 26, watchOS 26, iOS 26 and iPadOS 26, visionOS 26, iOS 18.7 and iPadOS 18.7. Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory. An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 18.7 and iPadOS 18.7, iOS 26 and iPadOS 26, macOS Tahoe 26, tvOS 26, visionOS 26, watchOS 26. Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory.
References

Tue, 04 Nov 2025 02:30:00 +0000

Type Values Removed Values Added
References

Tue, 04 Nov 2025 01:45:00 +0000

Type Values Removed Values Added
Description An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in tvOS 26, watchOS 26, iOS 18.7 and iPadOS 18.7, visionOS 26, macOS Tahoe 26, iOS 26 and iPadOS 26. Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory. An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in tvOS 26, watchOS 26, iOS 26 and iPadOS 26, visionOS 26, iOS 18.7 and iPadOS 18.7. Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory.

Mon, 03 Nov 2025 19:30:00 +0000

Type Values Removed Values Added
References

Thu, 25 Sep 2025 15:15:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 6.2, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}

 cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H'}

Wed, 17 Sep 2025 14:15:00 +0000

Type Values Removed Values Added
First Time appeared Apple iphone Os
CPEs cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*
Vendors & Products Apple iphone Os

Wed, 17 Sep 2025 11:00:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple ios
Apple ipados
Apple macos
Apple tvos
Apple visionos
Apple watchos
Vendors & Products Apple
Apple ios
Apple ipados
Apple macos
Apple tvos
Apple visionos
Apple watchos

Tue, 16 Sep 2025 16:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-125
Metrics cvssV3_1

{'score': 6.2, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 15 Sep 2025 22:45:00 +0000

Type Values Removed Values Added
Description An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in tvOS 26, watchOS 26, iOS 18.7 and iPadOS 18.7, visionOS 26, macOS Tahoe 26, iOS 26 and iPadOS 26. Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory.
References

Subscriptions

Apple Ios Ipados Iphone Os Macos Tvos Visionos Watchos
cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2026-04-02T18:08:36.485Z

Reserved: 2025-04-16T15:24:37.110Z

Link: CVE-2025-43346

cve-icon Vulnrichment

Updated: 2025-09-16T15:37:52.678Z

cve-icon NVD

Status : Modified

Published: 2025-09-15T23:15:36.837

Modified: 2026-04-02T19:20:31.073

Link: CVE-2025-43346

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T00:30:15Z

Weaknesses