—

CVE-2025-43202EXPLOITEDPATCHED

apple · ios

CVE-2025-43202: This issue was addressed with improved memory handling. This issue is fixed in iOS 18.6 and iPadOS 18.6, macOS Sequoia 1

Description

This issue was addressed with improved memory handling. This issue is fixed in iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6. Processing a file may lead to memory corruption.

Affected Products

Vendor	Product	Versions
apple	ios	0, 0

References

Related News (3 articles)

Tier C

VulDB12h ago

CVE-2025-43202 | Apple macOS File memory corruption

→ No new info (linked only)

Tier C

VulDB12h ago

CVE-2025-43202 | Apple iOS/iPadOS File memory corruption

→ No new info (linked only)

Tier C

Schneier on Security1d ago

Possible US Government iPhone Hacking Tool Leaked

→ No new info (linked only)

CISA KEV❌ No

Actively exploited✅ Yes

Patch available

18.6

PublishedApr 2, 2026

Last enriched12h agov3

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

HIGHCVE-2026-20700EXPKEV

A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, tvOS 26.3, visionOS 26.3, watchOS 26.3. An attacker with memo

Trending: 88

CRITICALCVE-2024-44219EXP

CVE-2024-44219: A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.1. A malicious a

Trending: 56

HIGHCVE-2024-44286EXP

CVE-2024-44286: This issue was addressed through improved state management. This issue is fixed in macOS Sequoia 15.1. An attacker with

Trending: 53

HIGHCVE-2024-40849EXP

CVE-2024-40849: A race condition was addressed with additional validation. This issue is fixed in macOS Sequoia 15.1. An app may be able

Trending: 53

HIGHCVE-2025-43210EXP

CVE-2025-43210: An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 18.6 and iPadOS 18

Trending: 47

Pin to Dashboard

Verification

State: verified

Confidence: 100%

Vulnerability Timeline

CVE Published

Apr 2, 2026

Discovered by ZDM

Apr 2, 2026

Updated: vendor, product, patchAvailable

Apr 2, 2026

Updated: description, severity

Apr 2, 2026

Actively Exploited

Apr 3, 2026

Exploit Available

Apr 3, 2026

Patch Available

Apr 3, 2026

Version History

Last enriched 12h ago

v3Tier C12h ago

Updated severity to CRITICAL and provided a more detailed description of the vulnerability.

descriptionseverity

via VulDB

v2Tier C12h ago

Updated vendor to Apple, product to macOS, severity to CRITICAL, and noted that no exploit is available.

vendorproductpatchAvailable

via VulDB

v112h ago

Initial creation