CVE-2025-43349: 
macOS Schwachstellenanalyse und -minderung

CVE-2025-43349 is a security vulnerability discovered in Apple's CoreAudio component affecting multiple Apple operating systems including macOS, iOS, iPadOS, tvOS, and visionOS. The vulnerability was disclosed on September 15, 2025, and was identified by security researcher @zlluny working with Trend Micro's Zero Day Initiative (Apple Support).

The vulnerability is characterized as an out-of-bounds write issue in the CoreAudio component that was addressed with improved input validation. The vulnerability could be triggered by processing a maliciously crafted video file, potentially leading to unexpected application termination (Apple Support, Apple iOS Support).

When exploited, this vulnerability could cause unexpected application termination when processing maliciously crafted video files. This affects multiple Apple platforms including macOS, iOS, iPadOS, tvOS, and visionOS, potentially impacting a wide range of Apple devices and their users (Apple Support, Apple iOS Support).

Apple has addressed this vulnerability by implementing improved input validation in the CoreAudio component. The fix is available through security updates released on September 15, 2025, across multiple operating systems including macOS Tahoe 26, iOS 26, iPadOS 26, tvOS 26, and visionOS 26 (Apple Support, Apple iOS Support).