CVE-2025-43510
Published: 12 December 2025
Summary
CVE-2025-43510 is a high-severity Improper Locking (CWE-667) vulnerability in Apple Macos. Its CVSS base score is 7.8 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked in the top 46.0% of CVEs by exploit likelihood; CISA has added it to the Known Exploited Vulnerabilities catalog.
The strongest mitigations our analysis identified are NIST 800-53 SC-39 (Process Isolation) and SC-4 (Information in Shared System Resources).
Deeper analysis
CVE-2025-43510 is a memory corruption vulnerability resulting from inadequate lock state checking that allows unexpected changes to memory shared between processes. It affects Apple platforms prior to the listed fixed releases, specifically iOS and iPadOS before 18.7.2 and 26.1, macOS Sequoia before 15.7.2, macOS Sonoma before 14.8.2, macOS Tahoe before 26.1, and tvOS, visionOS, and watchOS before 26.1. The flaw is tracked under CWE-667 and carries a CVSS 3.1 base score of 7.8.
A local attacker can exploit the issue by supplying a malicious application that requires user interaction to run. Successful exploitation grants the ability to alter shared memory across processes, producing high impacts on confidentiality, integrity, and availability without needing elevated privileges.
Apple security advisories at support.apple.com/en-us/125632 through 125636 state that the vulnerability is resolved in the updated releases by adding improved lock state checking. The current EPSS score of 0.0030 indicates low exploitation probability with no reported rise after disclosure.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-203138
Vulnerability details
A memory corruption issue was addressed with improved lock state checking. This issue is fixed in iOS 18.7.2 and iPadOS 18.7.2, iOS 26.1 and iPadOS 26.1, macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS Tahoe 26.1, tvOS 26.1, visionOS 26.1, watchOS…
more
26.1. A malicious application may cause unexpected changes in memory shared between processes.
- CWE(s)
- KEV Date Added
- 20 March 2026
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Memory corruption in inter-process shared regions enables arbitrary code execution from a local unprivileged malicious application, directly facilitating exploitation for privilege escalation.
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Implements controls to protect system memory from unauthorized access, modification, or deletion, directly mitigating memory corruption from improper lock state checking.
Isolates processes to prevent a malicious application from causing unexpected changes in shared memory between processes.
Prevents unauthorized and unintended information transfer via shared system resources such as memory exploited by this vulnerability.