Apple OS Kernel OOB Read via Bounds Check - Fixed in iOS 18.5
CVE-2025-43374 Published on November 21, 2025
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, visionOS 2.5, macOS Sonoma 14.7.3, macOS Ventura 13.7.3, macOS Sequoia 15.5, watchOS 11.5. An attacker in physical proximity may be able to cause an out-of-bounds read in kernel memory.
Vulnerability Analysis
CVE-2025-43374 is exploitable with physical access, and does not require authorization privileges or user interaction. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to be low. considered to have a small impact on confidentiality and integrity and availability.
Weakness Type
What is a Stack Overflow Vulnerability?
A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).
CVE-2025-43374 has been classified to as a Stack Overflow vulnerability or weakness.
Products Associated with CVE-2025-43374
Want to know whenever a new CVE is published for Apple products? stack.watch will email you.
Affected Versions
Apple macOS:- Version unspecified and below 14.7 is affected.
- Version unspecified and below 15.5 is affected.
- Version unspecified and below 17.7 is affected.
- Version unspecified and below 18.5 is affected.
- Version unspecified and below 2.5 is affected.
- Version unspecified and below 11.5 is affected.
- Version unspecified and below 13.7 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.