Medium severity5.5NVD Advisory· Published May 12, 2025· Updated Apr 2, 2026
CVE-2025-31196
CVE-2025-31196
Description
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.7, macOS Sequoia 15.4, macOS Sonoma 14.7.6, macOS Ventura 13.7.6, tvOS 18.4, visionOS 2.4, watchOS 11.4. Processing a maliciously crafted file may lead to a denial-of-service or potentially disclose memory contents.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*range: <17.7.7
- (no CPE)range: >= 18 < 18.4 or >= 17 < 17.7.7
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*range: <13.7.6
- (no CPE)range: >= 15 < 15.4 or >= 14 < 14.7.6 or >= 13 < 13.7.6
- Range: >= 18 < 18.4
Patches
Vulnerability mechanics
References
10- support.apple.com/en-us/122405nvdRelease NotesVendor Advisory
- support.apple.com/en-us/122717nvdRelease NotesVendor Advisory
- support.apple.com/en-us/122718nvdRelease NotesVendor Advisory
- seclists.org/fulldisclosure/2025/May/6nvd
- seclists.org/fulldisclosure/2025/May/9nvd
- support.apple.com/en-us/122371nvd
- support.apple.com/en-us/122373nvd
- support.apple.com/en-us/122376nvd
- support.apple.com/en-us/122377nvd
- support.apple.com/en-us/122378nvd
News mentions
0No linked articles in our index yet.