ACCORDING to Known Exploited Vulnerabilities Catalog, CVE-2025-43510 affects Apple Multiple Products including watchOS, iOS, iPadOS, macOS, visionOS and tvOS, describing an improper locking vulnerability that could allow a malicious application to cause unexpected changes in memory shared between processes. The entry notes the vulnerability is related to CWE-667 and that its status regarding ransomware campaigns is Unknown.
Action guidance advises applying mitigations per vendor instructions, following applicable BOD 22-01 guidance for cloud services, or discontinuing use of the product if mitigations are unavailable. Date Added is listed as 20 March 2026 with a due date of 3 April 2026. Additional notes provide several Apple support URLs and a link to the NVD entry for CVE-2025-43510.