CVE-2025-43520 - Vulnerability Details

- Memory Corruption Leading to Kernel Write and Unexpected System Termination

Description

A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 18.7.2 and iPadOS 18.7.2, iOS 26.1 and iPadOS 26.1, macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS Tahoe 26.1, tvOS 26.1, visionOS 26.1, watchOS 26.1. A malicious application may be able to cause unexpected system termination or write kernel memory.

Published: 2025-12-12

Score: 5.5 Medium

EPSS: < 1% Very Low

KEV: Yes

Impact:

Action:

Analysis

Impact

A memory corruption flaw identified as a buffer overflow (CWE‑120) allows a malicious application to overwrite kernel memory. The improper handling of memory can trigger unexpected system termination or enable the attacker to write arbitrary data to the kernel, potentially destabilizing the device or granting elevated privileges. The issue was corrected in Apple’s later OS releases, but devices running earlier versions remain vulnerable.

Affected Systems

Apple products – iOS, iPadOS, macOS (Sequoia 15.7.2, Sonoma 14.8.2, Tahoe 26.1), tvOS 26.1, visionOS 26.1, and watchOS 26.1 – are affected, with the vulnerability present in all versions prior to those listed.

Risk and Exploitability

The CVSS score of 5.5 places the flaw in the medium range, and the EPSS score of less than 1 % indicates a low probability of exploitation. Nonetheless, the vulnerability is listed in the CISA KEV catalog, reflecting confirmed exploitation in the wild. The attack most likely requires a malicious application installed on the device; no remote or network‑based vector is documented, so the threat is limited to local exploitation scenarios.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Apple

iOS and iPadOS

affected

Version	Status	Constraints
`0`	affected	< 18.7.2
`0`	affected	< 26.1

Apple

macOS

affected

Version	Status	Constraints
`0`	affected	< 14.8.2
`0`	affected	< 15.7.2
`0`	affected	< 26.1

Apple

tvOS

affected

Version	Status	Constraints
`0`	affected	< 26.1

Apple

visionOS

affected

Version	Status	Constraints
`0`	affected	< 26.1

Apple

watchOS

affected

Version	Status	Constraints
`0`	affected	< 26.1

Configuration 1 [-]

OR	cpe:2.3:o:apple:ipados::::::::
	cpe:2.3:o:apple:ipados:26.0:::::::*
	cpe:2.3:o:apple:iphone_os::::::::
	cpe:2.3:o:apple:iphone_os:26.0:::::::*
	cpe:2.3:o:apple:macos::::::::
	cpe:2.3:o:apple:macos::::::::
	cpe:2.3:o:apple:macos:26.0:::::::*
	cpe:2.3:o:apple:tvos::::::::
	cpe:2.3:o:apple:visionos::::::::
	cpe:2.3:o:apple:watchos::::::::

No data.

Vendor	Product	Confidence	Versions
Apple	Ios	—	—
Apple	Ipad Os	—	—
Apple	Macos	—	—
Apple	Macos Sequoia	—	—
Apple	Macos Sonoma	—	—
Apple	Macos Tahoe	—	—
Apple	Tvos	—	—
Apple	Visionos	—	—
Apple	Watchos	—	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade to the latest patched versions of iOS, iPadOS, macOS, tvOS, visionOS, and watchOS (e.g., iOS 18.7.2, iPadOS 18.7.2, iOS 26.1, iPadOS 26.1, macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS Tahoe 26.1, tvOS 26.1, visionOS 26.1, and watchOS 26.1) if you are currently running an older OS.
Configure devices to automatically install system updates and restrict the installation of apps to the official App Store to reduce exposure to malicious code.
Monitor Apple’s security advisories and CISA KEV updates for any new mitigation guidance or additional exposure data.

Generated by OpenCVE AI on April 27, 2026 at 22:40 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is in the KEV database since March 20, 2026.

The EPSS score is 0.00265.

Exploitation active

Automatable no

Technical Impact total

References

Link	Providers
https://cloud.google.com/blog/topics/threat-intelligence/darksword-ios-exploit-chain/
https://support.apple.com/en-us/125632
https://support.apple.com/en-us/125633
https://support.apple.com/en-us/125634
https://support.apple.com/en-us/125635
https://support.apple.com/en-us/125636
https://support.apple.com/en-us/125637
https://support.apple.com/en-us/125638
https://support.apple.com/en-us/125639
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-43520

History

Mon, 27 Apr 2026 23:00:00 +0000

Type	Values Removed	Values Added
Title		Memory Corruption Leading to Kernel Write and Unexpected System Termination

Fri, 03 Apr 2026 15:15:00 +0000

Type	Values Removed	Values Added
Weaknesses	CWE-787

Thu, 02 Apr 2026 20:30:00 +0000

Type	Values Removed	Values Added
Description	A memory corruption issue was addressed with improved memory handling. This issue is fixed in watchOS 26.1, iOS 18.7.2 and iPadOS 18.7.2, macOS Tahoe 26.1, visionOS 26.1, tvOS 26.1, macOS Sonoma 14.8.2, macOS Sequoia 15.7.2, iOS 26.1 and iPadOS 26.1. A malicious application may be able to cause unexpected system termination or write kernel memory.	A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 18.7.2 and iPadOS 18.7.2, iOS 26.1 and iPadOS 26.1, macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS Tahoe 26.1, tvOS 26.1, visionOS 26.1, watchOS 26.1. A malicious application may be able to cause unexpected system termination or write kernel memory.

Mon, 23 Mar 2026 14:15:00 +0000

Type	Values Removed	Values Added
Metrics	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'active', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Fri, 20 Mar 2026 18:45:00 +0000

Type	Values Removed	Values Added
CPEs		cpe:2.3:o:apple:ipados:26.0:::::::* cpe:2.3:o:apple:iphone_os:26.0:::::::* cpe:2.3:o:apple:macos:26.0:::::::*

Fri, 20 Mar 2026 16:15:00 +0000

Type	Values Removed	Values Added
References		https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-43520

Fri, 20 Mar 2026 15:45:00 +0000

Type	Values Removed	Values Added
Metrics		kev `{'dateAdded': '2026-03-20T00:00:00+00:00', 'dueDate': '2026-04-03T00:00:00+00:00'}`

Thu, 19 Mar 2026 18:15:00 +0000

Type	Values Removed	Values Added
References		https://cloud.google.com/blog/topics/threat-intelligence/darksword-ios-exploit-chain/

Thu, 19 Mar 2026 13:15:00 +0000

Type	Values Removed	Values Added
Metrics	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Wed, 18 Mar 2026 19:15:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-120

Tue, 16 Dec 2025 21:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Apple ipados Apple iphone Os
Weaknesses		CWE-787
CPEs		cpe:2.3:o:apple:ipados:::::::: cpe:2.3:o:apple:iphone_os:::::::: cpe:2.3:o:apple:macos:::::::: cpe:2.3:o:apple:tvos:::::::: cpe:2.3:o:apple:visionos:::::::: cpe:2.3:o:apple:watchos::::::::
Vendors & Products		Apple ipados Apple iphone Os

Mon, 15 Dec 2025 21:15:00 +0000

Type	Values Removed	Values Added
Metrics		cvssV3_1 `{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}` ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Sun, 14 Dec 2025 21:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Apple Apple ios Apple ipad Os Apple macos Apple macos Sequoia Apple macos Sonoma Apple macos Tahoe Apple tvos Apple visionos Apple watchos
Vendors & Products		Apple Apple ios Apple ipad Os Apple macos Apple macos Sequoia Apple macos Sonoma Apple macos Tahoe Apple tvos Apple visionos Apple watchos

Fri, 12 Dec 2025 21:15:00 +0000

Type	Values Removed	Values Added
Description		A memory corruption issue was addressed with improved memory handling. This issue is fixed in watchOS 26.1, iOS 18.7.2 and iPadOS 18.7.2, macOS Tahoe 26.1, visionOS 26.1, tvOS 26.1, macOS Sonoma 14.8.2, macOS Sequoia 15.7.2, iOS 26.1 and iPadOS 26.1. A malicious application may be able to cause unexpected system termination or write kernel memory.
References		https://support.apple.com/en-us/125632 https://support.apple.com/en-us/125633 https://support.apple.com/en-us/125634 https://support.apple.com/en-us/125635 https://support.apple.com/en-us/125636 https://support.apple.com/en-us/125637 https://support.apple.com/en-us/125638 https://support.apple.com/en-us/125639

Subscriptions

Apple Ios Ipad Os Ipados Iphone Os Macos Macos Sequoia Macos Sonoma Macos Tahoe Tvos Visionos Watchos

MITRE

Status: PUBLISHED

Assigner: apple

Published: 2025-12-12T20:56:25.542Z

Updated: 2026-04-02T18:11:45.764Z

Reserved: 2025-04-16T15:27:21.196Z

Link: CVE-2025-43520

Vulnrichment

Updated: 2025-12-15T20:27:22.684Z

NVD

Status : Analyzed

Published: 2025-12-12T21:15:56.830

Modified: 2026-04-03T14:28:03.810

Link: CVE-2025-43520

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-04-27T22:45:15Z

Weaknesses

CWE-120

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Exploitation active

Automatable no

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object