CVE-2025-43520
HIGH KEVApple - Memory Corruption
Title source: llmDescription
A memory corruption issue was addressed with improved memory handling. This issue is fixed in watchOS 26.1, iOS 18.7.2 and iPadOS 18.7.2, macOS Tahoe 26.1, visionOS 26.1, tvOS 26.1, macOS Sonoma 14.8.2, macOS Sequoia 15.7.2, iOS 26.1 and iPadOS 26.1. A malicious application may be able to cause unexpected system termination or write kernel memory.
References (10)
Scores
CVSS v3
7.1
EPSS
0.0002
EPSS Percentile
3.5%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
Details
CISA KEV
2026-03-20
VulnCheck KEV
2026-03-18
CWE
CWE-787
CWE-120
Status
published
Products (14)
apple/ipados
< 18.7.2
apple/iphone_os
< 18.7.2
apple/macos
< 14.8.2
apple/tvos
< 26.1
apple/visionos
< 26.1
apple/watchos
< 26.1
Apple/macOS
< 14.8
Apple/tvOS
< 26.1
Apple/macOS
< 26.1
Apple/visionOS
< 26.1
... and 4 more
Published
Dec 12, 2025
KEV Added
Mar 20, 2026
Tracked Since
Feb 18, 2026