NVD Vulnerability Detail

Search Exploit, PoC

Exploit DB

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2025-43226

Summary	An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 11.6, iOS 18.6 and iPadOS 18.6, iPadOS 17.7.9, tvOS 18.6, macOS Sequoia 15.6, macOS Sonoma 14.7.7, visionOS 2.6. Processing a maliciously crafted image may result in disclosure of process memory.
Publication Date	July 30, 2025, 9:15 a.m.
Registration Date	July 31, 2025, 4 a.m.
Last Update	Aug. 1, 2025, 5:42 a.m.

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:o:apple:macos::::::::		15.0			15.6
cpe:2.3:o:apple:macos::::::::					14.7.7
cpe:2.3:o:apple:iphone_os::::::::					18.6
cpe:2.3:o:apple:tvos::::::::					18.6
cpe:2.3:o:apple:visionos::::::::					2.6
cpe:2.3:o:apple:watchos::::::::					11.6
cpe:2.3:o:apple:ipados::::::::					17.7.9
cpe:2.3:o:apple:ipados::::::::		18.0			18.6

Related information, measures and tools

No	URL	refsource	タグ
1	https://support.apple.com/en-us/124147		Release Notes Vendor Advisory
2	https://support.apple.com/en-us/124148		Release Notes Vendor Advisory
3	https://support.apple.com/en-us/124149		Release Notes Vendor Advisory
4	https://support.apple.com/en-us/124150		Release Notes Vendor Advisory
5	https://support.apple.com/en-us/124153		Release Notes Vendor Advisory
6	https://support.apple.com/en-us/124154		Release Notes Vendor Advisory
7	https://support.apple.com/en-us/124155		Release Notes Vendor Advisory

Common Vulnerabilities List

JVN Vulnerability Information

複数のアップル製品における境界外読み取りに関する脆弱性

Title	複数のアップル製品における境界外読み取りに関する脆弱性
Summary	iPadOS、iOS、macOS 等複数のアップル製品には、境界外読み取りに関する脆弱性が存在します。
Possible impacts	情報を取得される可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	July 29, 2025, midnight
Registration Date	Aug. 7, 2025, 3:35 p.m.
Last Update	Aug. 7, 2025, 3:35 p.m.

Affected System

アップル

iOS 18.6 未満

iPadOS 17.7.9 未満

iPadOS 18.0 以上 18.6 未満

macOS 14.7.7 未満

macOS 15.0 以上 15.6 未満

tvOS 18.6 未満

visionOS 2.6 未満

watchOS 11.6 未満

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2025-43226	https://www.cve.org/CVERecord?id=CVE-2025-43226
National Vulnerability Database (NVD)
2	CVE-2025-43226	https://nvd.nist.gov/vuln/detail/CVE-2025-43226

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-125	https://cwe.mitre.org/data/definitions/125.html

ベンダー情報

No	Name	URL
Apple Security Updates
1	124147	https://support.apple.com/en-us/124147
2	124148	https://support.apple.com/en-us/124148
3	124149	https://support.apple.com/en-us/124149
4	124150	https://support.apple.com/en-us/124150
5	124153	https://support.apple.com/en-us/124153
6	124154	https://support.apple.com/en-us/124154
7	124155	https://support.apple.com/en-us/124155
Apple セキュリティアップデート
8	124147	https://support.apple.com/ja-jp/124147
9	124148	https://support.apple.com/ja-jp/124148
10	124149	https://support.apple.com/ja-jp/124149
11	124150	https://support.apple.com/ja-jp/124150
12	124153	https://support.apple.com/ja-jp/124153
13	124154	https://support.apple.com/ja-jp/124154
14	124155	https://support.apple.com/ja-jp/124155

Change Log

No	Changed Details	Date of change
1	[2025年08月07日] 掲載	Aug. 7, 2025, 3:34 p.m.