CVE-2025-31196

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iPadOS 17.7.7, macOS Ventura 13.7.6, macOS Sonoma 14.7.6. Processing a maliciously crafted file may lead to a denial-of-service or potentially disclose memory contents.

CVSS

No CVSS.

References

Link	Resource
https://support.apple.com/en-us/122405	Release Notes Vendor Advisory
https://support.apple.com/en-us/122717	Release Notes Vendor Advisory
https://support.apple.com/en-us/122718	Release Notes Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:apple:macos::::::::
	cpe:2.3:o:apple:macos::::::::
	cpe:2.3:o:apple:ipados::::::::

History

27 May 2025, 13:57

Type	Values Removed	Values Added
CPE		cpe:2.3:o:apple:ipados:::::::: cpe:2.3:o:apple:macos::::::::
First Time		Apple ipados Apple macos Apple
References	~~() https://support.apple.com/en-us/122717 -~~	() https://support.apple.com/en-us/122717 - Release Notes, Vendor Advisory
References	~~() https://support.apple.com/en-us/122405 -~~	() https://support.apple.com/en-us/122405 - Release Notes, Vendor Advisory
References	~~() https://support.apple.com/en-us/122718 -~~	() https://support.apple.com/en-us/122718 - Release Notes, Vendor Advisory

12 May 2025, 22:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-05-12 22:15

Updated : 2025-05-27 13:57

NVD link : CVE-2025-31196

Mitre link : CVE-2025-31196

JSON object : View

Products Affected

apple

ipados
macos

CWE

No CWE.

JSON object

Attach tags to CVE-2025-31196

Attach tags to `CVE-2025-31196`