CNNVD-202509-1886 Information
CNNVD ID
CNNVD-202509-1886
Related CVE
- CNNVD Published: 2025-09-15
Description (Chinese)
Apple iOS等都是美国苹果(Apple)公司的产品。Apple iOS是一套为移动设备所开发的操作系统。Apple tvOS是一套智能电视操作系统。Apple watchOS是一套智能手表操作系统。 Apple多款产品存在安全漏洞,该漏洞源于处理特制媒体文件时输入验证不足,可能导致应用程序意外终止或进程内存损坏。以下产品及版本受到影响:iOS 26之前版本、iPadOS 26之前版本、tvOS 26之前版本、watchOS 26之前版本、macOS Tahoe 26之前版本和visionOS 26之前版本。
Description (English)
Apple iOS and others are American Apple products. Apple iOS is an operating system developed for mobile devices. Apple tvOS is a smart television operating system. Apple WatchOS is a smart watch operating system. There was a security gap in the Apple multi-products, which stemmed from inadequate input validation in the processing of custom-made media files, which could lead to accidental termination of the application or damage to the process memory. The following products and versions were affected: pre-iOS 26, pre-iPados 26, pre-tvOS 26, pre-watchOS 26, pre-macOS Tahoe 26 and pre-vision OS 26.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
苹果
Published
2025-09-15
Last Modified
2026-02-24
References
https://support.apple.com/en-us/125114 https://support.apple.com/en-us/125115 https://support.apple.com/en-us/125116 https://support.apple.com/en-us/125110 http://seclists.org/fulldisclosure/2025/Sep/57 http://seclists.org/fulldisclosure/2025/Sep/58 http://seclists.org/fulldisclosure/2025/Sep/49 http://seclists.org/fulldisclosure/2025/Sep/53 http://seclists.org/fulldisclosure/2025/Sep/56 https://support.apple.com/en-us/125108 https://support.apple.com/en-us/125636 https://access.redhat.com/security/cve/cve-2025-43372
Patch
https://support.apple.com/en-us/125108
Share on: