CVE-2025-43223

A denial-of-service issue was addressed with improved input validation. This issue is fixed in macOS Ventura 13.7.7, iPadOS 17.7.9, iOS 18.6 and iPadOS 18.6, macOS Sonoma 14.7.7, watchOS 11.6, macOS Sequoia 15.6, tvOS 18.6, visionOS 2.6. A non-privileged user may be able to modify restricted network settings.

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://support.apple.com/en-us/124147
https://support.apple.com/en-us/124148
https://support.apple.com/en-us/124149
https://support.apple.com/en-us/124150
https://support.apple.com/en-us/124151
https://support.apple.com/en-us/124153
https://support.apple.com/en-us/124154
https://support.apple.com/en-us/124155

Configurations

No configuration.

History

30 Jul 2025, 14:15

Type	Values Removed	Values Added
CWE		CWE-20
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 7.5
Summary		(es) Se solucionó un problema de denegación de servicio mejorando la validación de entrada. Este problema está corregido en macOS Ventura 13.7.7, iPadOS 17.7.9, iOS 18.6 y iPadOS 18.6, macOS Sonoma 14.7.7, watchOS 11.6, macOS Sequoia 15.6, tvOS 18.6 y visionOS 2.6. Un usuario sin privilegios puede modificar la configuración de red restringida.

30 Jul 2025, 00:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-07-30 00:15

Updated : 2025-07-30 14:15

NVD link : CVE-2025-43223

Mitre link : CVE-2025-43223

CVE.ORG link : CVE-2025-43223

JSON object : View

Products Affected

No product.

CWE

CWE-20

Improper Input Validation

{"id": "CVE-2025-43223", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2025-07-30T00:15:34.363", "references": [{"url": "https://support.apple.com/en-us/124147", "source": "product-security@apple.com"}, {"url": "https://support.apple.com/en-us/124148", "source": "product-security@apple.com"}, {"url": "https://support.apple.com/en-us/124149", "source": "product-security@apple.com"}, {"url": "https://support.apple.com/en-us/124150", "source": "product-security@apple.com"}, {"url": "https://support.apple.com/en-us/124151", "source": "product-security@apple.com"}, {"url": "https://support.apple.com/en-us/124153", "source": "product-security@apple.com"}, {"url": "https://support.apple.com/en-us/124154", "source": "product-security@apple.com"}, {"url": "https://support.apple.com/en-us/124155", "source": "product-security@apple.com"}], "vulnStatus": "Received", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "A denial-of-service issue was addressed with improved input validation. This issue is fixed in macOS Ventura 13.7.7, iPadOS 17.7.9, iOS 18.6 and iPadOS 18.6, macOS Sonoma 14.7.7, watchOS 11.6, macOS Sequoia 15.6, tvOS 18.6, visionOS 2.6. A non-privileged user may be able to modify restricted network settings."}, {"lang": "es", "value": "Se solucion\u00f3 un problema de denegaci\u00f3n de servicio mejorando la validaci\u00f3n de entrada. Este problema est\u00e1 corregido en macOS Ventura 13.7.7, iPadOS 17.7.9, iOS 18.6 y iPadOS 18.6, macOS Sonoma 14.7.7, watchOS 11.6, macOS Sequoia 15.6, tvOS 18.6 y visionOS 2.6. Un usuario sin privilegios puede modificar la configuraci\u00f3n de red restringida."}], "lastModified": "2025-07-30T14:15:26.867", "sourceIdentifier": "product-security@apple.com"}