Vulnerability Database

299,184

Total vulnerabilities in the database

CVE-2025-43400

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in watchOS 26.1, tvOS 26.1. Processing a maliciously crafted font may lead to unexpected app termination or corrupt process memory.

Published: Sep 29, 2025
Updated: Nov 4, 2025
CVE: CVE-2025-43400
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.3
AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

CWEs:

CWE-787

Affected Software
References

Software	From	Fixed in
apple / ipados	-	18.7.1
apple / ipados	26.0	26.0.x
apple / iphone_os	-	18.7.1
apple / iphone_os	26.0	26.0.x
apple / macos	14.0	14.8.1
apple / macos	15.0	15.7.1
apple / macos	26.0	26.0.x
apple / visionos	-	26.0.1

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime