Home > Vulnerability Database > CVE-2025-43265

Mend.io Vulnerability Database

CVE-2025-43265

Good to know:

Date: July 29, 2025

An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 11.6, visionOS 2.6, iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6. Processing maliciously crafted web content may disclose internal states of the app.

Severity Score

4.0

Related Resources (15)

Url: https://support.apple.com/en-us/124147

Url: http://seclists.org/fulldisclosure/2025/Jul/37

Url: https://support.apple.com/en-us/124154

Url: https://support.apple.com/en-us/124155

Url: https://support.apple.com/en-us/124152

Url: https://support.apple.com/en-us/124153

Url: http://seclists.org/fulldisclosure/2025/Aug/0

Url: http://seclists.org/fulldisclosure/2025/Jul/30

Url: http://seclists.org/fulldisclosure/2025/Jul/32

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-43265

Url: https://support.apple.com/en-us/124149

Url: http://www.openwall.com/lists/oss-security/2025/08/02/1

Url: http://seclists.org/fulldisclosure/2025/Jul/35

Url: https://lists.debian.org/debian-lts-announce/2025/08/msg00015.html

Url: https://www.mend.io/vulnerability-database/CVE-2025-43265

Severity Score

4.0

Weakness Type (CWE)

Out-of-bounds Read

CWE-125

Top Fix

Upgrade Version

Upgrade to version https://github.com/WebKit/WebKit.git - webkitgtk-2.48.5;https://github.com/WebKit/WebKit.git - wpewebkit-2.48.5

Learn More

CVSS v3.1

Base Score:	4.0
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	NONE
Availability (A):	NONE

Mend.io Vulnerability Database

We found results for “”

CVE-2025-43265

Good to know:

Date: July 29, 2025

Severity Score

Related Resources (15)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

Do you need more information?