Primary

Context

Apple CoreMedia Out-of-Bounds Access Vulnerability Allowing Memory Corruption

Vulnerability

Patched

A vulnerability in the CoreMedia framework of Apple products, including macOS Sequoia 15.6, iOS 18.6, iPadOS 18.6, visionOS 2.6, and tvOS 18.6, has been identified. This issue involves out-of-bounds access, which could be exploited by processing a maliciously crafted media file. The vulnerability may lead to memory corruption or cause an application to terminate unexpectedly.

Impact

Exploitation of this vulnerability can cause memory corruption, potentially allowing for arbitrary code execution, or lead to a denial-of-service condition by causing an application to crash.

Added: Jul 30, 2025, 1:46 AM

Updated: Jul 30, 2025, 1:46 AM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

4.7

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

4.7

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apple CoreMedia Out-of-Bounds Access Vulnerability Allowing Memory Corruption

Vulnerability

Impact

Affected Products

Apple macOS Sequoia

Apple iPadOS

Apple tvOS

Apple visionOS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating