CVE-2025-43300 - PatchNow

Data Source: CIRCL

Confidence: HIGH

Exploitation Method: USER_INTERACTION

CVE Published: 2025-08-21

Added to CISA KEV: 2025-08-21 0 DAY BETWEEN CVE AND KEV

⚠️ CRITICAL: Check for indicators of compromise - this vulnerability is in CISA KEV indicating active exploitation in the wild. Review logs, check for unauthorized access, verify system integrity before patching
Apply security updates immediately: macOS Sonoma 14.7.8, macOS Ventura 13.7.8, iPadOS 17.7.10, macOS Sequoia 15.6.1, iOS 18.6.2 and iPadOS 18.6.2
Monitor for suspicious image files and implement email/web filtering for malicious images
HIGH patch priority due to active exploitation and zero-day status

CISA Warns of Actively Exploited 0-Day Vulnerability in Apple iOS...
The vulnerability, catalogued as CVE-2025-43300, represents a serious security flaw within Apple’s Image I/O framework, which handles image processing across iOS, iPadOS, and macOS platforms.
Apple Zero-Day Vulnerability CVE-2025-43300: What You Need to...
The flaw, identified as CVE-2025-43300, is already being actively exploited in highly targeted attacks. The patches, delivered as iOS 18.6.2 and iPadOS 18.6.2, correct a memory corruption issue that can be triggered when a device processes a specially crafted image file.
CVE-2025-43300 Detail - NVD
Missing: internet- facing
PoC Exploit and Technical Analysis Published for Apple 0-Day RCE ...
CVE-2025-43300 represents a continuation of Apple’s ongoing challenges with image processing security. The vulnerability highlights how the complexity of modern file formats, particularly when multiple standards interact (TIFF containers with JPEG data), can create unexpected attack surfaces.
About the security content of iOS 18.6.2 and iPadOS 18.6.2
Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals.

🟢 CVE-2025-43300