CVE-2025-46280
Description
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Tahoe 26. An app may be able to cause unexpected system termination.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
An out-of-bounds read in macOS Tahoe 26 could allow an app to cause unexpected system termination.
Vulnerability
An out-of-bounds read vulnerability exists in macOS Tahoe 26, addressed with improved bounds checking. The issue is present in versions prior to macOS Tahoe 26, which includes Mac Studio (2022 and later), iMac (2020 and later), Mac Pro (2019 and later), Mac mini (2020 and later), MacBook Air with Apple silicon (2020 and later), MacBook Pro (13-inch, 2020, Four Thunderbolt 3 ports), and MacBook Pro with Apple silicon (2020 and later) [1]. The specific affected component is not detailed in the available reference.
Exploitation
An app may exploit this issue, requiring only the ability to execute code on the system. No special privileges or user interaction beyond launching the app are indicated in the advisory [1]. The out-of-bounds read can be triggered by the app, leading to system termination.
Impact
Successful exploitation could cause unexpected system termination, resulting in a denial of service (availability impact). No information disclosure or privilege escalation is indicated in the available reference [1].
Mitigation
Apple has fixed this issue in macOS Tahoe 26, released September 15, 2025 [1]. Users should update to this version. No workarounds are provided in the reference.
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
1- Range: <26
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.