CVE-2025-43464
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-12-12
Last updated on: 2025-12-15
Assigner: Apple Inc.
Description
Description
A denial-of-service issue was addressed with improved input validation. This issue is fixed in macOS Tahoe 26.1. Visiting a website may lead to an app denial-of-service.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| apple | macos | to 26.1 (exc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-20 | The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a denial-of-service issue in macOS Tahoe where visiting a website may cause an application to become unresponsive or crash. The issue was addressed by improving input validation.
How can this vulnerability impact me? :
The vulnerability can cause applications on macOS Tahoe to crash or become unresponsive when visiting certain websites, leading to a denial-of-service condition.
What immediate steps should I take to mitigate this vulnerability?
Update your macOS to version Tahoe 26.1 or later, as this version includes the fix for the denial-of-service issue caused by visiting a malicious website.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70