Medium severity6.3NVD Advisory· Published Nov 4, 2025· Updated Apr 2, 2026
CVE-2025-43448
CVE-2025-43448
Description
This issue was addressed with improved validation of symlinks. This issue is fixed in iOS 18.7.2 and iPadOS 18.7.2, iOS 26.1 and iPadOS 26.1, macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS Tahoe 26.1, tvOS 26.1, visionOS 26.1, watchOS 26.1. An app may be able to break out of its sandbox.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*range: <26.1
- (no CPE)range: <18.7.2
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*range: <14.8.2
- (no CPE)range: <15.7.2
- Range: <18.7.2
Patches
Vulnerability mechanics
References
8News mentions
0No linked articles in our index yet.