CVE-2025-30422

{"id": "CVE-2025-30422", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.8}, {"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.8}]}, "published": "2025-04-30T21:15:54.700", "references": [{"url": "https://support.apple.com/en-us/122403", "tags": ["Vendor Advisory"], "source": "product-security@apple.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-120"}]}, {"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-120"}]}], "descriptions": [{"lang": "en", "value": "A buffer overflow was addressed with improved input validation. This issue is fixed in AirPlay audio SDK 2.7.1 and AirPlay video SDK 3.6.0.126. An attacker on the local network may cause an unexpected app termination."}, {"lang": "es", "value": "Se solucion\u00f3 un desbordamiento de b\u00fafer mejorando la validaci\u00f3n de entrada. Este problema se solucion\u00f3 en el SDK de audio de AirPlay 2.7.1, el SDK de v\u00eddeo de AirPlay 3.6.0.126 y el complemento de comunicaci\u00f3n de CarPlay R18.1. Un atacante en la red local podr\u00eda provocar el cierre inesperado de la aplicaci\u00f3n."}], "lastModified": "2026-04-02T19:19:33.583", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:apple:airplay_audio_software_development_kit:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0BEE19EA-7BD5-441D-8C25-F2529C5AF5A5", "versionEndExcluding": "2.7.1"}, {"criteria": "cpe:2.3:a:apple:airplay_video_software_development_kit:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EFAC8539-73DB-4545-A221-21F5E24B9AF8", "versionEndExcluding": "3.6.0.126"}, {"criteria": "cpe:2.3:a:apple:carplay_communication_plug-in:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "00E0D29A-8A73-4E08-9937-6574886D872D", "versionEndExcluding": "r18.1"}], "operator": "OR"}]}], "sourceIdentifier": "product-security@apple.com"}