vulnerability

OS X update for Model I/O (CVE-2025-31281)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
9	(AV:N/AC:L/Au:N/C:C/I:N/A:C)	Aug 8, 2025	Aug 8, 2025	Jan 23, 2026

Severity

CVSS

(AV:N/AC:L/Au:N/C:C/I:N/A:C)

Published

Aug 8, 2025

Added

Aug 8, 2025

Modified

Jan 23, 2026

Description

An input validation issue was addressed with improved memory handling. This issue is fixed in visionOS 2.6, tvOS 18.6, macOS Sequoia 15.6, iOS 18.6 and iPadOS 18.6. Processing a maliciously crafted file may lead to unexpected app termination.

Solution

apple-osx-upgrade-15_6

References

CVE-2025-31281
https://attackerkb.com/topics/CVE-2025-31281
CWE-20
URL-https://support.apple.com/en-us/124149

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today