CVE-2025-43529β€”Apple Multiple Products Use-After-Free WebKit Vulnerability

PUBLISHEDvulnerability record
2025-12-15 Β· last modified December 22, 2025

Metadata

CVE ID:
CVE-2025-43529
Project:
Apple
Product:
Multiple Products
Date Added:
2025-12-15
Due Date:
2026-01-05
Last Updated:
December 22, 2025

Vulnerability Name

Apple Multiple Products Use-After-Free WebKit Vulnerability

Description

Apple iOS, iPadOS, macOS, and other Apple products contain a use-after-free vulnerability in WebKit. Processing maliciously crafted web content may lead to memory corruption. This vulnerability could impact HTML parsers that use WebKit, including but not limited to Apple Safari and non-Apple products which rely on WebKit for HTML processing.

Known To Be Used in Ransomware Campaigns?

Ransomware Status:
Unknown

Action

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Additional Notes

Related News Articles

Related Weaknesses