CVE-2025-43529

This repository contains a proof-of-concept exploit for CVE-2025-43529 and CVE-2025-14174, targeting WebKit and ANGLE on iOS 26.1. It demonstrates a Use-After-Free (UAF) vulnerability in JavaScriptCore and an Out-of-Bounds (OOB) write in ANGLE, with verified primitives for address leaking and type confusion.

This repository contains a detailed writeup and analysis of CVE-2025-43529, a use-after-free vulnerability in WebKit's DFG JIT compiler due to a missing StoreBarrier insertion. The vulnerability affects iOS 26.1, iPadOS 26.1, and macOS Tahoe 26.0.1.

This repository provides a root cause analysis for CVE-2025-43529, a UAF vulnerability in JavaScriptCore due to incorrect DFG StoreBarrierInsertionPhase. It includes a PDF analysis and references an external exploit by @jir4vv1t.

This PoC exploits a Use-After-Free (UAF) vulnerability in WebKit (CVE-2025-43529) by desynchronizing the garbage collector from the GPU's Metal command buffer using a timed WebGL attack. It targets Apple Silicon devices running iOS 26.1+ or macOS Tahoe, bypassing hardware-level memory protections like EMTE and MIE.

The repository contains only a minimal README with a CVE reference and no functional exploit code or technical details. It appears to be a placeholder or incomplete project.

The repository appears to be a writeup or documentation for a project called 'telegram,' a minimalist bookmarking application. No exploit code or proof-of-concept is present in the provided files.

The repository lacks actual exploit code or technical analysis, instead directing users to external downloads via GitHub releases. The README is marketing-focused with no substantive details about the vulnerabilities.

This is a JavaScript-based PoC for CVE-2025-43529, targeting a WebKit use-after-free vulnerability in iOS Safari. It uses a temporal resonance technique to exploit memory corruption for RCE.