CVE-2025-43200 – Apple WatchOS/IOS/MacOS/iPadOS/VisionOS Photo/Video Processing Logic Vulnerability

June 16, 2025

CVE ID : CVE-2025-43200

Published : June 16, 2025, 10:16 p.m. | 2 hours, 32 minutes ago

Description : This issue was addressed with improved checks. This issue is fixed in watchOS 11.3.1, macOS Ventura 13.7.4, iOS 15.8.4 and iPadOS 15.8.4, iOS 16.7.11 and iPadOS 16.7.11, iPadOS 17.7.5, visionOS 2.3.1, macOS Sequoia 15.3.1, iOS 18.3.1 and iPadOS 18.3.1, macOS Sonoma 14.7.4. A logic issue existed when processing a maliciously crafted photo or video shared via an iCloud Link. Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-48992 – Group-Office Cross-Site Scripting Vulnerability

Next Article CVE-2025-6140 – Spdlog Local Resource Consumption Vulnerability

Highlights

CVE-2025-6668 – Code-projects Inventory Management System SQL Injection Vulnerability

June 25, 2025

CVE ID : CVE-2025-6668

Published : June 25, 2025, 10:15 p.m. | 4 hours, 6 minutes ago

Description : A vulnerability was found in code-projects Inventory Management System 1.0. It has been classified as critical. This affects an unknown part of the file /php_action/fetchSelectedBrand.php. The manipulation of the argument brandId leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

This week in AI dev tools: Gemini API Batch Mode, Amazon SageMaker AI updates, and more (July 11, 2025)

JFrog finds MCP-related vulnerability, highlighting need for stronger focus on security in MCP ecosystem

8 Key Questions Every CEO Should Ask Before Hiring a Node.js Development Company in 2025

Vibe Loop: AI-native reliability engineering for the real world

The best Xbox and PC headset I’ve used for the last couple years is on sale

These 5 free add-ons make Minecraft Bedrock Edition feel brand new

This compact laptop dock streamlined my workspace – and it’s buy one get one

Why your USB-C device won’t charge – and what you can do instead

The details of TC39’s last meeting

The details of TC39’s last meeting

new Date(“wtf”) – How well do you know JavaScript’s Date class?

Francisco Bergeret Paves the Way Through Strong Leadership at Perficient

Windows 11 KB5062553 install fails, issues cause Firewall error (July 2025 Update)

Windows 11 KB5062553 install fails, issues cause Firewall error (July 2025 Update)

Nornir – pluggable multi-threaded framework

Hypatia – research tool for the Linux desktop

CVE-2025-43200 – Apple WatchOS/IOS/MacOS/iPadOS/VisionOS Photo/Video Processing Logic Vulnerability

Critical Cisco Vulnerability in Unified CM Grants Root Access via Static Credentials

Critical Vulnerability in Anthropic’s MCP Exposes Developer Machines to Remote Exploits

Designer Spotlight: Bimo Tri

CVE-2025-6753 – Huija BicycleSharingServer SQL Injection Vulnerability

CVE-2025-36026 – IBM Datacap Insecure Cookie Handling Vulnerability

DDoS attack on feminist blog backfires on International Women’s Day

CVE-2025-6668 – Code-projects Inventory Management System SQL Injection Vulnerability

CVE-2023-37535 – HCL Domino Volt and Domino Leap Unvalidated Request Parameter Vulnerability

AlphaEvolve: A Gemini-powered coding agent for designing advanced algorithms

Best 11 PC Games Ported To Android To Play From Your Phone

CVE-2025-43200 – Apple WatchOS/IOS/MacOS/iPadOS/VisionOS Photo/Video Processing Logic Vulnerability

Related Posts