CVE-2025-43372: Input Validation
Published Sep 15, 2025
·Updated
Admin Framework. A logic issue was addressed with improved checks.
Other sources
AirPort. A permissions issue was addressed with additional restrictions.
— Apple
AMD. A buffer overflow was addressed with improved bounds checking.
— Apple
AppKit. The issue was resolved by blocking unsigned services from launching on Intel Macs.
— Apple
Apple Neural Engine. An out-of-bounds access issue was addressed with improved bounds checking.
— Apple
Apple Online Store Kit. A permissions issue was addressed with additional restrictions.
— Apple
Credit
Ryan Dowd@@_rdowd, Mickey Jin@@patch1t, Gergely Kalman@@gergely_kalman, Joseph Ravichandran@@0xjprx(MIT CSAIL), Dave G. (supernetworks.org), JZ, Zhongcheng Li(IES Red Team of ByteDance), Michael Reeves@@IntegralPilot, Morris Richman@@morrisinlife, Csaba Fitzl@@theevilbit(Kandji), Hikerell (Loadshine Lab), 이동하 (Lee Dong Ha(BoB 14th), wac(Trend Micro Zero Day Initiative), an anonymous researcher, Hossein Lotfi@@hosselot(Trend Micro Zero Day Initiative), Rodolphe BRUNETTI@@eisw0lf(Lupus Nova), pattern-f@@pattern_F_, Ferdous Saljooki@@malwarezoo(Jamf), Murray Mike, 이동하 (Lee Dong Ha)(SSA Lab), Cristian Dinca (icmd.tech), Apple, Dave G.(supernetworks), Alex Radocea(supernetworks), Taavi Eomäe(Zone Media), Kirin@@Pwnrin, Atul R V, Asaf Cohen, CVE-2024-43398, CVE-2024-49761, CVE-2025-6442, Vivek Dhar, ASI (RM) in Border Security Force, FTR HQ BSF Kashmir, Nikolai Skliarenko(Trend Micro Zero Day Initiative), Jonathan Bar Or@@yo_yo_yo_jbo(Microsoft), Alexia Wilson(Microsoft), Christine Fossaceca(Microsoft), CVE-2025-6965, Wang Yu(Cyberserval), Nikita Sakalouski, Rosyna Keller(Totally Not Malicious Software), Guilherme Rambo(Best Buddy Apps), Yinyi Wu@@_3ndy1(Dawn Security Lab of JD), @@zlluny(Trend Micro Zero Day Initiative), Keisuke Hosoda, Viktor Oreshkin, Philipp Baldauf, Minghao Lin@@Y1nKoc, Lyutoon@@Lyutoon_, YingQi Shi@@Mas0n, Dawuge(Shuffle Team), Tom Brzezinski, Abhay Kailasia@@abhay_kailasia(C), KPC(Cisco Talos), Evan Waelde, 정답이 아닌 해답, Richard Hyunho Im@@richeeta, Jiwon Park, Noah Gregory (wts.dev), Seo Hyun-gyu@@wh1te4ever, Luke Roberts@@rookuu, Jaydev Ahire, Big Bear, Ignacio Sanmillan@@ulexec, Mike Cardwell(grepular), Bob Lord, Pawel Wylecial(REDTEAM), ABC Research s.r.o., Nolan Astrein(Kandji), Mickey Jin@@patch1t(Cisco Talos), Kirin@@Pwnrin(Cisco Talos), Claudio Bozzato(Cisco Talos), Francesco Benvenuto(Cisco Talos), Zhongquan Li@@Guluisacat, Bilal Siddiqui, Matej Moravec@@MacejkoMoravec, Shantanu Thakur, Anonymous(Trend Micro Zero Day Initiative), Jian Lee@@speedyfriend433, Yiğit Can YILMAZ@@yilmazcanyigit, Ye Zhang@@VAR10CK(Baidu Security), Nathaniel Oh@@calysteon, Rodolphe Brunetti@@eisw0lf(Lupus Nova), LFY@@secsys(Fudan University), CVE-2025-40909, @@zlluny, CVE-2024-27280, @@RenwaX23, Ye Zhang(Baidu Security), Kirin@@Pwnrin(Computer Science), Cristian Dinca(Computer Science), Romania, Justin Elliot Fu, Pyrophoria(GrapheneOS), an anonymous researcher(GrapheneOS), James J Kalafus, Michel Migdal, ken super
Affected Software
13 affected componentsFixes available
Apple tvOS<26
26
Apple visionOS<26
26
Apple iOS<26
26
Apple iPadOS<26
26
Apple WatchOS<26
26
Apple macOS Tahoe<26
26
Apple iPadOS<26.0
Apple iPhone OS<26.0
Apple macOS<26.0
Apple tvOS<26.0
Apple visionOS<26.0
Apple WatchOS<26.0
Apple macOS Sonoma<14.8.2
14.8.2
Event History
Sep 15, 2025
Data Sourced
via Apple·12:00 AM
DescriptionWeaknessAffected Software
Updated
via Apple·12:00 AM
DescriptionWeakness
Updated
via Apple·12:00 AM
Description
Updated
via Apple·12:00 AM
DescriptionAffected Software
Updated
via Apple·12:00 AM
Affected Software
Updated
via Apple·12:00 AM
DescriptionWeaknessAffected Software
CVE Published
via MITRE·10:35 PM
Data Sourced
via MITRE·10:35 PM
DescriptionWeakness
Data Sourced
via NVD·11:15 PM
DescriptionSeverityWeaknessAffected Software
Nov 3, 2025
Updated
via Apple·12:00 AM
DescriptionWeaknessAffected Software
Updated
via Apple·12:00 AM
DescriptionAffected Software
Parent advisories
This vulnerability appears in the following advisories.
Peer vulnerabilities
Found alongside the following vulnerabilities.
- CVE-2025-43322
- CVE-2025-43468
- CVE-2025-43379
- CVE-2025-43469
- CVE-2025-43478
- CVE-2025-43407
- CVE-2025-43446
- CVE-2025-43361
- CVE-2025-43472
- CVE-2025-43394
- CVE-2025-43448
- CVE-2025-43395
- CVE-2025-43401
- CVE-2025-43479
- CVE-2025-43382
- CVE-2025-43445
- CVE-2025-43420
- CVE-2025-43498
- CVE-2025-43348
- CVE-2025-43474
- CVE-2025-43372
- CVE-2025-43338
- CVE-2025-43396
- CVE-2025-43398
- CVE-2025-43510
- CVE-2025-43520
- CVE-2025-43413
- CVE-2025-43494
- CVE-2025-43389
- CVE-2025-43410
- CVE-2025-43411
- CVE-2025-43405
- CVE-2025-43391
- CVE-2024-43398
- CVE-2024-49761
- CVE-2025-6442
- CVE-2025-43335
- CVE-2025-43408
- CVE-2025-43476
- CVE-2025-30465
- CVE-2025-43414
- CVE-2025-43499
- CVE-2025-43380
- CVE-2025-43477
- CVE-2025-43336
- CVE-2025-43397
- CVE-2025-31199
- CVE-2025-6965
- CVE-2025-43334
- CVE-2025-43412
- CVE-2025-43373
- CVE-2025-43344
- CVE-2025-43317
- CVE-2025-43346
- CVE-2025-43360
- CVE-2025-43354
- CVE-2025-43303
- CVE-2025-43357
- CVE-2025-43323
- CVE-2025-43349
- CVE-2025-43302
- CVE-2025-31255
- CVE-2025-43359
- CVE-2025-43345
- CVE-2025-43362
- CVE-2025-43365
- CVE-2025-43355
- CVE-2025-43203
- CVE-2025-43309
- CVE-2025-46306
- CVE-2025-31254
- CVE-2025-43329
- CVE-2025-43358
- CVE-2025-30468
- CVE-2025-43190
- CVE-2025-43347
- CVE-2025-43356
- CVE-2025-43272
- CVE-2025-43343
- CVE-2025-43342
- CVE-2025-43419
- CVE-2025-43376
- CVE-2025-43368
- CVE-2025-43288
- CVE-2025-43208
- CVE-2025-43312
- CVE-2025-43321
- CVE-2025-31268
- CVE-2025-43331
- CVE-2025-43340
- CVE-2025-43337
- CVE-2025-43320
- CVE-2025-43285
- CVE-2025-43330
- CVE-2025-43451
- CVE-2025-43307
- CVE-2025-43403
- CVE-2025-43292
- CVE-2025-24088
- CVE-2025-43305
- CVE-2025-43290
- CVE-2025-43289
- CVE-2025-46284
- CVE-2025-43316
- CVE-2025-31271
- CVE-2025-31270
- CVE-2025-43326
- CVE-2025-43283
- CVE-2025-46280
- CVE-2025-43325
- CVE-2025-43287
- CVE-2025-43366
- CVE-2025-43299
- CVE-2025-43295
- CVE-2025-43353
- CVE-2025-43294
- CVE-2025-43319
- CVE-2025-43315
- CVE-2025-43207
- CVE-2025-43279
- CVE-2025-43301
- CVE-2025-43298
- CVE-2025-46310
- CVE-2025-40909
- CVE-2025-43297
- CVE-2025-31269
- CVE-2025-43204
- CVE-2024-27280
- CVE-2025-43327
- CVE-2025-43328
- CVE-2025-43318
- CVE-2025-46307
- CVE-2025-31259
- CVE-2025-43332
- CVE-2025-43293
- CVE-2025-43291
- CVE-2025-43286
- CVE-2025-43369
- CVE-2025-43367
- CVE-2025-43333
- CVE-2025-24197
- CVE-2025-43341
- CVE-2025-43314
- CVE-2025-43304
- CVE-2025-43306
- CVE-2025-43296
- CVE-2025-43311
- CVE-2025-43308
- CVE-2025-43262
- CVE-2025-43310
Frequently Asked Questions
1
What is the severity of CVE-2025-43372?
CVE-2025-43372 is rated as a high severity vulnerability due to its buffer overflow and permissions issues.
2
How do I fix CVE-2025-43372?
To resolve CVE-2025-43372, users should update their affected Apple devices to the latest available version of macOS Tahoe, tvOS, iOS, iPadOS, watchOS, or visionOS.
3
Which Apple products are affected by CVE-2025-43372?
CVE-2025-43372 affects macOS Tahoe, tvOS, iOS, iPadOS, watchOS, and visionOS, specifically versions below 26.
4
What are the issues addressed by CVE-2025-43372?
CVE-2025-43372 addresses a permissions issue, a buffer overflow, and an out-of-bounds access issue on affected Apple platforms.
5
Was CVE-2025-43372 exploited in the wild?
There is no public evidence indicating that CVE-2025-43372 has been exploited in the wild.