CVE-2025-31281

CVSS 9.1 CRITICALEPSS 1.1%CWE-20

An input validation issue was addressed with improved memory handling. This issue is fixed in iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6, visionOS 2.6. Processing a maliciously crafted file may lead to unexpected app termination.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

Productos afectados

Apple · iOS and iPadOS Apple · macOS Apple · tvOS Apple · visionOS

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://seclists.org/fulldisclosure/2025/Jul/30 http://seclists.org/fulldisclosure/2025/Jul/32 http://seclists.org/fulldisclosure/2025/Jul/36 http://seclists.org/fulldisclosure/2025/Jul/37 https://support.apple.com/en-us/124147 https://support.apple.com/en-us/124149 https://support.apple.com/en-us/124153 https://support.apple.com/en-us/124154