What is CVE-2025-43370?

CVE-2025-43370 is a vulnerability in Apple Xcode. Published 2025-09-15.

Is CVE-2025-43370 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Apple Xcode

CVE-2025-43370

A path handling issue was addressed with improved validation. This issue is fixed in Xcode 26. Processing an overly large path value may crash a process.

EPSS: 0.000 (8.2th percentile) — read the EPSS interpretation.

Affected products

Apple Xcode — versions 0

Public proof-of-concept exploits

calysteon/calysteon

References

support.apple.com/en-us/125117

Frequently asked questions

What is CVE-2025-43370?: CVE-2025-43370 is a vulnerability in Apple Xcode. Published 2025-09-15.
Is CVE-2025-43370 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.