Home > Vulnerability Database > CVE-2025-43425

Mend.io Vulnerability Database

CVE-2025-43425

Good to know:

Date: November 3, 2025

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.1, visionOS 26.1, watchOS 26.1, iOS 26.1 and iPadOS 26.1, tvOS 26.1. Processing maliciously crafted web content may lead to an unexpected process crash.

Severity Score

4.3

Related Resources (7)

Url: https://support.apple.com/en-us/125632

Url: https://support.apple.com/en-us/125640

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-43425

Url: https://support.apple.com/en-us/125638

Url: https://support.apple.com/en-us/125639

Url: https://support.apple.com/en-us/125637

Url: https://www.mend.io/vulnerability-database/CVE-2025-43425

Severity Score

4.3

Weakness Type (CWE)

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-119

Top Fix

Upgrade Version

Upgrade to version https://github.com/WebKit/WebKit.git - webkitgtk-2.50.2;https://github.com/WebKit/WebKit.git - wpewebkit-2.50.2;https://github.com/WebKit/WebKit.git - webkitgtk-2.51.2;https://github.com/WebKit/WebKit.git - wpewebkit-2.51.2

Learn More

CVSS v3.1

Base Score:	4.3
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	REQUIRED
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	LOW

Mend.io Vulnerability Database

We found results for “”

CVE-2025-43425

Good to know:

Date: November 3, 2025

Severity Score

Related Resources (7)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

Do you need more information?