Severity
Medium
Analysis Summary
CVE-2025-31273 CVSS:7.5
Processing maliciously crafted web content may lead to memory corruption.
CVE-2025-43225 CVSS:8.8
A logging issue was addressed with improved data redaction. This issue is fixed in Apple macOS Sequoia 15.6, iPadOS 17.7.9, macOS Ventura 13.7.7, macOS Sonoma 14.7.7. An app may be able to access sensitive user data.
CVE-2025-43213 CVSS:7.5
Processing maliciously crafted web content may lead to an unexpected Safari crash. The issue was addressed with improved memory handling.
Impact
- Information Disclosure
- Gain Access
Indicators of Compromise
CVE
CVE-2025-31273
CVE-2025-43225
CVE-2025-43213
Affected Vendors
- Apple
Affected Products
- Apple macOs
- Apple visionOS
- Apple tvOS
- Apple watchOS
- Apple iPadOS unspecified
- Apple macOS unspecified
Remediation
Refer to the Apple security document for patch, upgrade, or suggested workaround information.