Apple HID Bound-Check Crash (macOS/iOS) before 15.7.4/18.7.5
CVE-2025-46300 Published on February 11, 2026

The issue was addressed with improved bounds checks. This issue is fixed in macOS Sequoia 15.7.4, iOS 18.7.5 and iPadOS 18.7.5, macOS Sonoma 14.8.4. A malicious HID device may cause an unexpected process crash.

NVD

Vulnerability Analysis

Attack Vector:

ADJACENT_NETWORK

Attack Complexity:

LOW

Privileges Required:

NONE

User Interaction:

REQUIRED

Scope:

UNCHANGED

Confidentiality Impact:

NONE

Integrity Impact:

NONE

Availability Impact:

HIGH

Weakness Type

What is a Buffer Overflow Vulnerability?

The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

CVE-2025-46300 has been classified to as a Buffer Overflow vulnerability or weakness.

Products Associated with CVE-2025-46300

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2025-46300 are published in these products:

Apple iOS

Apple iPadOS

Apple macOS

Apple Macos Sonoma

Apple Ios And Ipados

Affected Versions

Apple macOS:

Version unspecified and below 15.7 is affected.

Apple macOS:

Version unspecified and below 14.8 is affected.

Apple iOS and iPadOS:

Version unspecified and below 18.7 is affected.

Exploit Probability

EPSS

0.01%

Percentile

0.28%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Apple HID Bound-Check Crash (macOS/iOS) before 15.7.4/18.7.5CVE-2025-46300 Published on February 11, 2026

Vulnerability Analysis

Weakness Type

What is a Buffer Overflow Vulnerability?

Products Associated with CVE-2025-46300

Affected Versions

Exploit Probability

Apple HID Bound-Check Crash (macOS/iOS) before 15.7.4/18.7.5
CVE-2025-46300 Published on February 11, 2026