Login Sign Up

CVE-2025-43347

9.8 CRITICAL

📋 TL;DR

An input validation vulnerability in Apple operating systems allows attackers to execute arbitrary code or cause denial of service by sending specially crafted input. This affects users of visionOS, tvOS, iOS, iPadOS, and watchOS before version 26.

💻 Affected Systems

Products:
  • visionOS
  • tvOS
  • iOS
  • iPadOS
  • watchOS
Versions: All versions before 26
Operating Systems: Apple visionOS, Apple tvOS, Apple iOS, Apple iPadOS, Apple watchOS
Default Config Vulnerable: ⚠️ Yes
Notes: All devices running affected OS versions are vulnerable by default

📦 What is this software?

Ipados by Apple

View all CVEs affecting Ipados →

Iphone Os by Apple

View all CVEs affecting Iphone Os →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

Tvos by Apple

View all CVEs affecting Tvos →

Visionos by Apple

View all CVEs affecting Visionos →

Watchos by Apple

View all CVEs affecting Watchos →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete system compromise, data theft, or device takeover

🟠

Likely Case

Application crash or denial of service affecting system stability

🟢

If Mitigated

Limited impact with proper input sanitization and network segmentation

🌐 Internet-Facing: HIGH - Affects mobile and IoT devices often directly internet-connected
🏢 Internal Only: MEDIUM - Could be exploited via internal network if devices are connected

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ⚠️ Yes
Complexity: MEDIUM

CVSS 9.8 suggests critical severity with network attack vector and no authentication required

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: visionOS 26, tvOS 26, iOS 26, iPadOS 26, watchOS 26

Vendor Advisory: https://support.apple.com/en-us/125108

Restart Required: Yes

Instructions:

1. Go to Settings > General > Software Update. 2. Download and install the latest OS update. 3. Restart device after installation completes.

🔧 Temporary Workarounds

Network Segmentation

all

Isolate affected devices from untrusted networks

Input Validation

all

Implement strict input validation in applications using affected APIs

🧯 If You Can't Patch

  • Disable unnecessary services and network exposure
  • Implement strict network access controls and monitoring

🔍 How to Verify

Check if Vulnerable:

Check OS version in Settings > General > About > Software Version

Check Version:

Not applicable - check via device settings UI

Verify Fix Applied:

Verify OS version is 26 or higher in Settings > General > About

📡 Detection & Monitoring

Log Indicators:

  • Unexpected application crashes
  • Memory corruption errors
  • Unusual process creation

Network Indicators:

  • Unusual network traffic to device services
  • Malformed input patterns

SIEM Query:

source="apple-device-logs" AND (event_type="crash" OR event_type="memory_error")

📊 Metadata

CVE ID: CVE-2025-43347
CVSS v3 Score: 9.8 (CRITICAL)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-20
EPSS Score: 0.14% exploit probability (34.7th percentile)
Published: September 15, 2025
Last Updated: November 4, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-43347, you might also want to check these:

CVE-2022-47190 10.0

CVE-2022-47190 allows remote attackers to upload malicious firmware containing a webshell to Generex...

Same vulnerability type (CWE-20)
CVE-2024-3400 10.0

CVE-2024-3400 is a critical command injection vulnerability in Palo Alto Networks PAN-OS GlobalProte...

Same vulnerability type (CWE-20)
CVE-2023-42802 10.0

This critical vulnerability in GLPI allows attackers to upload malicious PHP files to unauthorized d...

Same vulnerability type (CWE-20)