Skip to main content

Apple EUVD-2025-209196

| CVE-2025-43238 MEDIUM
Integer Overflow or Wraparound (CWE-190)
2026-04-02 apple GHSA-6qw7-vfjm-2g92
Buffer Overflow Integer Overflow Apple
6.2
CVSS 3.1
Share

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High

Lifecycle Timeline

4
Patch available
Apr 16, 2026 - 05:29 EUVD
14.7.7,15.6,13.7.7
EUVD ID Assigned
Apr 02, 2026 - 19:01 euvd
EUVD-2025-209196
Analysis Generated
Apr 02, 2026 - 19:01 vuln.today
CVE Published
Apr 02, 2026 - 18:09 nvd
MEDIUM 6.2

DescriptionNVD

An integer overflow was addressed with improved input validation. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may be able to cause unexpected system termination.

AnalysisAI

Integer overflow in macOS kernel allows local applications to trigger unexpected system termination (denial of service) on Sequoia, Sonoma, and Ventura systems. The vulnerability requires local execution (AV:L) with no authentication or user interaction, enabling any installed application to crash the system. Apple has released patches addressing this issue in macOS Sequoia 15.6, Sonoma 14.7.7, and Ventura 13.7.7. No public exploit code or active exploitation has been reported at the time of analysis.

Technical ContextAI

This vulnerability stems from an integer overflow condition (CWE-190) in macOS kernel code responsible for input validation. Integer overflows occur when arithmetic operations on integer variables exceed the maximum representable value for that data type, potentially wrapping to unexpected values and bypassing validation checks. The vulnerability affects core macOS system libraries used by applications, making it accessible to any locally-running process without elevated privileges. The CPE data indicates the vulnerability exists across macOS versions 14.x (Sonoma) below 14.7.7, 15.x (Sequoia) below 15.6, and 13.x (Ventura) below 13.7.7, suggesting the flawed code spans multiple kernel release branches.

RemediationAI

Users should immediately install the vendor-released patches: macOS Ventura 13.7.7 or later, macOS Sonoma 14.7.7 or later, or macOS Sequoia 15.6 or later, depending on which version they are running. These patches address the integer overflow with improved input validation in the affected kernel code. Patches are available through the standard macOS Software Update mechanism. No workarounds are available; patching is the required mitigation. Users should consult the Apple security advisories at https://support.apple.com/en-us/124149, https://support.apple.com/en-us/124150, and https://support.apple.com/en-us/124151 for their respective macOS version to confirm compatibility and deployment guidance.

More from same product – last 7 days

CVE-2026-44739 HIGH
8.7 May 27

SQL injection in Pimcore's CustomReportsBundle (versions ≤ 12.3.5) lets an authenticated user holding the reports_config
CVE-2026-5817 HIGH
8.2 May 22

Arbitrary code execution in Docker Model Runner's vllm-metal inference backend on macOS allows any container on the Dock
CVE-2026-5843 HIGH
8.2 May 22

Arbitrary code execution in Docker Desktop's Model Runner on macOS allows any container on the Docker network to escape

CVE-2025-43306 HIGH
7.8 May 26

Local privilege escalation in Apple macOS allows a malicious app already running with low privileges to elevate to root

CVE-2026-49237 HIGH
7.8 May 28

Local privilege escalation in Canonical Multipass for macOS before 1.16.3 allows a low-privileged local user to obtain r

Share

EUVD-2025-209196 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy