CVE-2025-43374: Race Condition

Published Jan 27, 2025
·
Updated

afpfs. The issue was addressed with improved memory handling.

Other sources

afpfs. This issue was addressed with improved checks.

Apple

AirDrop. A permissions issue was addressed with additional restrictions.

Apple

AirPlay. A type confusion issue was addressed with improved checks.

Apple

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 18.5 and iPadOS 18.5, iPadOS 17.7.7, macOS Sequoia 15.5, macOS Sonoma 14.7.3, macOS Ventura 13.7.3, tvOS 18.5, visionOS 2.5, watchOS 11.5. An attacker in physical proximity may be able to cause an out-of-bounds read in kernel memory.

MITRE

Apple Intelligence Reports. A permissions issue was addressed with additional restrictions.

Apple

Credit

Bohdan Stasiuk@@Bohdan_Stasiuk, Kirin@@Pwnrin, Mickey Jin@@patch1t, Minghao Lin@@Y1nKoc(Zhejiang University), babywu(Zhejiang University), (Zhejiang University), Xingwei Lin(Zhejiang University), Wang Yu(Cyberserval), Desmond(Trend Micro Zero Day Initiative), Pwn2car & Rotiple(HyeongSeok Jang)(Trend Micro Zero Day Initiative), Arsenii Kostromin (0x3c3e), Joshua Jones, DongJun Kim@@smlijun, JongSeong Kim in Enki WhiteHat@@nevul37, D4m0n, an anonymous researcher, Ivan Fratric(Google Project Zero), 风(binary_fmyy), Minghao Lin@@Y1nKoc, Pedro Tôrres@@t0rr3sp3dr0, 神罚@@Pwnrin, Anonymous(Trend Micro Zero Day Initiative), Yiğit Can YILMAZ@@yilmazcanyigit, Michael DePlante@@izobashi(Trend Micro Zero Day Initiative), Zhongquan Li@@Guluisacat, Hossein Lotfi@@hosselot(Trend Micro Zero Day Initiative), Junsung Lee, Rodolphe BRUNETTI@@eisw0lf(Lupus Nova), Yann GASCUEL(Alter Solutions), Eric Dorphy(Twin Cities App Dev LLC), jioundai(360 Vulnerability Research Institute), chen fengjiao(HBC), PixiePoint Security, CertiK SkyFall Team, Google Threat Analysis Group, Joseph Ravichandran@@0xjprx(MIT CSAIL), pattern-f@@pattern_F_, Minghao Lin@(Y1nKoc), Jonathan Bar Or@@yo_yo_yo_jbo(Microsoft), Adam M., Uri Katz (Oligo Security), Guilherme Rambo(Best Buddy Apps), Apple, Saagar Jha, Tony Iskow@@Tybbow, Lucas Leong@@_wmliang_(Trend Micro Zero Day Initiative), Christian Kohlschütter, CVE-2024-8176, Paweł Płatek (Trail(Bits), Dave G., Google V8 Security Team, Andreas Jaegersberger & Ro Achterberg(Nosebeard Labs), wac(Trend Micro Zero Day Initiative), rheza@@ginggilBesel(Palo Alto Networks), Edouard Bochin@@le_douds(Palo Alto Networks), Tao Yan@@Ga1ois(Palo Alto Networks), Nan Wang@@eternalsakura13, Ignacio Sanmillan@@ulexec, Jiming Wang, Jikai Ren, Yuhao Hu, Yan Kang, Chenggang Wu, Xiaojie Wei, Juergen Schmied(Lynck GmbH), Ron Masas(BREAKPOINT), Dillon Franke(Google Project Zero), Andrew James Gonzalez, Lyutoon(Atredis Partners), YenKoc(Atredis Partners), Dayton Pidhirney(Atredis Partners), Mateusz Krzywicki@@krzywix, Richard Hyunho Im@@richeeta, Andr.Ess, Noah Gregory (wts.dev), wac, 7feilee, Thibaud Kehler, 秦若涵, 崔志伟, 崔宝江, Deval Jariwala, Dalibor Milanovic, YingQi Shi@@Mas0nShi(DBAppSecurity's WeBin lab), Duy Trần@@khanhduytran0, Lyutoon, YenKoc, Shehab Khan, CertiK@@CertiK, Thomas Völkl@@vollkorntomate, SEEMOO, TU Darmstadt, Kirin@@Pwnrin(Fudan University), LFY@@secsys(Fudan University), Bohdan Stasiuk@@bohdan_stasiuk, Sourabhkumar Mishra, CVE-2025-26465, CVE-2025-26466, Csaba Fitzl@@theevilbit(Kandji), @@RenwaX23, Ryan Dowd@@_rdowd

Affected Software

24 affected componentsFixes available
Apple iPadOS<17.7.7
Apple iOS<18.5
Apple visionOS<2.5
Apple macOS Sonoma<14.7.3
Apple macOS Ventura<13.7.3
Apple macOS Sequoia<15.5
Apple WatchOS<11.5
Apple macOS Ventura<13.7.3
13.7.3
Apple macOS Sonoma<14.7.3
14.7.3
Apple WatchOS<11.5
11.5
Apple iPadOS<17.7.7
17.7.7
Apple iOS<18.5
18.5
Apple iPadOS<18.5
18.5
Apple tvOS<18.5
18.5
Apple macOS Sequoia<15.5
15.5
Apple visionOS<2.5
2.5
Apple iPadOS<17.7.7
Apple iPadOS>=18.0<18.5
Apple iPhone OS<18.5
Apple macOS<13.7.3
Apple macOS>=14.0<14.7.3
Apple macOS>=15.0<15.5
Apple visionOS<2.5
Apple WatchOS<11.5

Event History

Jan 27, 2025
Data Sourced
via Apple·12:00 AM
DescriptionWeaknessAffected Software
Updated
via Apple·12:00 AM
DescriptionWeakness
Updated
via Apple·12:00 AM
Description
Updated
via Apple·12:00 AM
DescriptionWeaknessAffected Software
Updated
via Apple·12:00 AM
Affected Software
Updated
via Apple·12:00 AM
DescriptionAffected Software
May 12, 2025
Updated
via Apple·12:00 AM
DescriptionWeaknessAffected Software
Updated
via Apple·12:00 AM
DescriptionAffected Software
Nov 21, 2025
CVE Published
via MITRE·09:22 PM
Data Sourced
via MITRE·09:22 PM
DescriptionWeakness
Data Sourced
via NVD·10:16 PM
DescriptionSeverityWeaknessAffected Software

Parent advisories

This vulnerability appears in the following advisories.

Peer vulnerabilities

Found alongside the following vulnerabilities.

Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Frequently Asked Questions

1

What is the severity of CVE-2025-43374?

CVE-2025-43374 is classified as a potentially high severity vulnerability due to its nature of allowing out-of-bounds memory access.

2

How do I fix CVE-2025-43374?

To fix CVE-2025-43374, users should update their devices to the latest versions of iPadOS 17.7.7, iOS 18.5, visionOS 2.5, macOS Sonoma 14.7.3, macOS Ventura 13.7.3, macOS Sequoia 15.5, or watchOS 11.5.

3

What devices are affected by CVE-2025-43374?

CVE-2025-43374 affects devices running iPadOS, iOS, visionOS, macOS Sonoma, macOS Ventura, macOS Sequoia, and watchOS that are below the specified versions.

4

What type of vulnerability is CVE-2025-43374?

CVE-2025-43374 is categorized as an out-of-bounds read vulnerability, which may allow attackers to access unintended memory.

5

Is physical proximity required for exploiting CVE-2025-43374?

Yes, an attacker would need to be in physical proximity to exploit CVE-2025-43374.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203