CVE-2025-43510 - Vulnerability Details

- Memory Corruption Leading to Remote Code Execution Through Improper Locking

Description

A memory corruption issue was addressed with improved lock state checking. This issue is fixed in iOS 18.7.2 and iPadOS 18.7.2, iOS 26.1 and iPadOS 26.1, macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS Tahoe 26.1, tvOS 26.1, visionOS 26.1, watchOS 26.1. A malicious application may cause unexpected changes in memory shared between processes.

Published: 2025-12-12

Score: 7.8 High

EPSS: < 1% Very Low

KEV: Yes

Impact:

Action:

Analysis

Impact

The vulnerability is a memory corruption flaw that can be triggered by a malicious application to arbitrarily modify the contents of memory shared between processes. The flaw is caused by improper lock state checking, which allows a race condition that results in unintended writes. If exploited, an attacker could achieve unauthorized code execution or other privilege escalations on the affected devices.

Affected Systems

Apple products including iOS, iPadOS, macOS, tvOS, visionOS, and watchOS are impacted. The affected versions are: iOS 18.7.2, 26.1; iPadOS 18.7.2, 26.1; macOS Sequoia 15.7.2, Sonoma 14.8.2, Tahoe 26.1; tvOS 26.1; visionOS 26.1; watchOS 26.1.

Risk and Exploitability

The CVSS score of 7.8 indicates high severity, but the EPSS score of less than 1% suggests a low probability of exploitation in the wild. The flaw is listed in the CISA KEV catalog, meaning there are known exploits. The likely attack vector is a local malicious application that can manipulate shared memory through the incorrect lock handling.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Apple

iOS and iPadOS

affected

Version	Status	Constraints
`0`	affected	< 18.7.2
`0`	affected	< 26.1

Apple

macOS

affected

Version	Status	Constraints
`0`	affected	< 14.8.2
`0`	affected	< 15.7.2
`0`	affected	< 26.1

Apple

tvOS

affected

Version	Status	Constraints
`0`	affected	< 26.1

Apple

visionOS

affected

Version	Status	Constraints
`0`	affected	< 26.1

Apple

watchOS

affected

Version	Status	Constraints
`0`	affected	< 26.1

Configuration 1 [-]

OR	cpe:2.3:o:apple:ipados::::::::
	cpe:2.3:o:apple:ipados:26.0:::::::*
	cpe:2.3:o:apple:iphone_os::::::::
	cpe:2.3:o:apple:iphone_os:26.0:::::::*
	cpe:2.3:o:apple:macos::::::::
	cpe:2.3:o:apple:macos::::::::
	cpe:2.3:o:apple:macos:26.0:::::::*
	cpe:2.3:o:apple:tvos::::::::
	cpe:2.3:o:apple:visionos::::::::
	cpe:2.3:o:apple:watchos::::::::

No data.

Vendor	Product	Confidence	Versions
Apple	Ios	—	—
Apple	Ipad Os	—	—
Apple	Ipados	—	—
Apple	Macos	—	—
Apple	Macos Sequoia	—	—
Apple	Macos Sonoma	—	—
Apple	Macos Tahoe	—	—
Apple	Tvos	—	—
Apple	Visionos	—	—
Apple	Watchos	—	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Apply the latest OS updates—install iOS, iPadOS 18.7.2 or 26.1; macOS Sequoia 15.7.2, Sonoma 14.8.2, Tahoe 26.1; tvOS, visionOS, watchOS 26.1—to incorporate the fix.
Restrict device use to applications from the official Apple App Store or those approved by your organization, and remove any apps installed from untrusted or third‑party sources.
On managed devices, enforce MDM policies that limit background process privileges, automatically deploy critical updates, and monitor for unauthorized applications to reduce exposure.

Generated by OpenCVE AI on April 22, 2026 at 20:43 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is in the KEV database since March 20, 2026.

The EPSS score is 0.00303.

Exploitation active

Automatable no

Technical Impact total

References

Link	Providers
https://cloud.google.com/blog/topics/threat-intelligence/darksword-ios-exploit-chain/
https://support.apple.com/en-us/125632
https://support.apple.com/en-us/125633
https://support.apple.com/en-us/125634
https://support.apple.com/en-us/125635
https://support.apple.com/en-us/125636
https://support.apple.com/en-us/125637
https://support.apple.com/en-us/125638
https://support.apple.com/en-us/125639
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-43510

History

Wed, 22 Apr 2026 21:00:00 +0000

Type	Values Removed	Values Added
Title		Memory Corruption Leading to Remote Code Execution Through Improper Locking

Thu, 02 Apr 2026 20:30:00 +0000

Type	Values Removed	Values Added
Description	A memory corruption issue was addressed with improved lock state checking. This issue is fixed in watchOS 26.1, iOS 18.7.2 and iPadOS 18.7.2, macOS Tahoe 26.1, visionOS 26.1, tvOS 26.1, macOS Sonoma 14.8.2, macOS Sequoia 15.7.2, iOS 26.1 and iPadOS 26.1. A malicious application may cause unexpected changes in memory shared between processes.	A memory corruption issue was addressed with improved lock state checking. This issue is fixed in iOS 18.7.2 and iPadOS 18.7.2, iOS 26.1 and iPadOS 26.1, macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS Tahoe 26.1, tvOS 26.1, visionOS 26.1, watchOS 26.1. A malicious application may cause unexpected changes in memory shared between processes.

Mon, 23 Mar 2026 14:15:00 +0000

Type	Values Removed	Values Added
Metrics	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'active', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Fri, 20 Mar 2026 16:30:00 +0000

Type	Values Removed	Values Added
References		https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-43510

Fri, 20 Mar 2026 15:45:00 +0000

Type	Values Removed	Values Added
Metrics		kev `{'dateAdded': '2026-03-20T00:00:00+00:00', 'dueDate': '2026-04-03T00:00:00+00:00'}`

Thu, 19 Mar 2026 18:30:00 +0000

Type	Values Removed	Values Added
Weaknesses	CWE-362

Thu, 19 Mar 2026 18:15:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-667
References		https://cloud.google.com/blog/topics/threat-intelligence/darksword-ios-exploit-chain/

Thu, 18 Dec 2025 15:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Apple iphone Os
CPEs		cpe:2.3:o:apple:ipados:::::::: cpe:2.3:o:apple:ipados:26.0:::::::* cpe:2.3:o:apple:iphone_os:::::::: cpe:2.3:o:apple:iphone_os:26.0:::::::* cpe:2.3:o:apple:macos:::::::: cpe:2.3:o:apple:macos:26.0:::::::* cpe:2.3:o:apple:tvos:::::::: cpe:2.3:o:apple:visionos:::::::: cpe:2.3:o:apple:watchos::::::::
Vendors & Products		Apple iphone Os

Wed, 17 Dec 2025 19:15:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-362
Metrics		cvssV3_1 `{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}` ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Sun, 14 Dec 2025 21:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Apple Apple ios Apple ipad Os Apple ipados Apple macos Apple macos Sequoia Apple macos Sonoma Apple macos Tahoe Apple tvos Apple visionos Apple watchos
Vendors & Products		Apple Apple ios Apple ipad Os Apple ipados Apple macos Apple macos Sequoia Apple macos Sonoma Apple macos Tahoe Apple tvos Apple visionos Apple watchos

Fri, 12 Dec 2025 21:15:00 +0000

Type	Values Removed	Values Added
Description		A memory corruption issue was addressed with improved lock state checking. This issue is fixed in watchOS 26.1, iOS 18.7.2 and iPadOS 18.7.2, macOS Tahoe 26.1, visionOS 26.1, tvOS 26.1, macOS Sonoma 14.8.2, macOS Sequoia 15.7.2, iOS 26.1 and iPadOS 26.1. A malicious application may cause unexpected changes in memory shared between processes.
References		https://support.apple.com/en-us/125632 https://support.apple.com/en-us/125633 https://support.apple.com/en-us/125634 https://support.apple.com/en-us/125635 https://support.apple.com/en-us/125636 https://support.apple.com/en-us/125637 https://support.apple.com/en-us/125638 https://support.apple.com/en-us/125639

Subscriptions

Apple Ios Ipad Os Ipados Iphone Os Macos Macos Sequoia Macos Sonoma Macos Tahoe Tvos Visionos Watchos

MITRE

Status: PUBLISHED

Assigner: apple

Published: 2025-12-12T20:56:38.131Z

Updated: 2026-04-02T18:16:23.175Z

Reserved: 2025-04-16T15:27:21.195Z

Link: CVE-2025-43510

Vulnrichment

Updated: 2025-12-16T15:09:47.455Z

NVD

Status : Analyzed

Published: 2025-12-12T21:15:55.843

Modified: 2026-04-03T14:28:19.317

Link: CVE-2025-43510

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-04-22T20:45:27Z

Weaknesses

CWE-667

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

Exploitation active

Automatable no

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object