A mail header parsing issue was addressed with improved checks. This issue is fixed in watchOS 26.1, iOS 18.7.2 and iPadOS 18.7.2, macOS Tahoe 26.1, visionOS 26.1, macOS Sonoma 14.8.2, macOS Sequoia 15.7.2, iOS 26.1 and iPadOS 26.1. An attacker may be able to cause a persistent denial-of-service.

Metrics

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00028.

Key SSVC decision points have not yet been added.

Affected Vendors & Products

No data.

No data.

No data.

No data.

Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References
Link Providers
https://support.apple.com/en-us/125632 cve-icon cve-icon
https://support.apple.com/en-us/125633 cve-icon cve-icon
https://support.apple.com/en-us/125634 cve-icon cve-icon
https://support.apple.com/en-us/125635 cve-icon cve-icon
https://support.apple.com/en-us/125636 cve-icon cve-icon
https://support.apple.com/en-us/125638 cve-icon cve-icon
https://support.apple.com/en-us/125639 cve-icon cve-icon
History

Fri, 12 Dec 2025 21:15:00 +0000

Type Values Removed Values Added
Description A mail header parsing issue was addressed with improved checks. This issue is fixed in watchOS 26.1, iOS 18.7.2 and iPadOS 18.7.2, macOS Tahoe 26.1, visionOS 26.1, macOS Sonoma 14.8.2, macOS Sequoia 15.7.2, iOS 26.1 and iPadOS 26.1. An attacker may be able to cause a persistent denial-of-service.
References

Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2025-12-12T20:56:47.563Z

Reserved: 2025-04-16T15:27:21.191Z

Link: CVE-2025-43494

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2025-12-12T21:15:55.390

Modified: 2025-12-12T21:15:55.390

Link: CVE-2025-43494

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses

No weakness.