CVE-2025-24189

HIGH

8.8

Beschreibung

The issue was addressed with improved checks. This issue is fixed in Safari 18.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, tvOS 18.3, visionOS 2.3, watchOS 11.3. Processing maliciously crafted web content may lead to memory corruption.

CVE Details

CVSS v3.1 Bewertung8.8

SchweregradHIGH

CVSS VektorCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AngriffsvektorNETWORK

KomplexitatLOW

Erforderliche PrivilegienNONE

BenutzerinteraktionREQUIRED

Veroffentlicht5/19/2025

Zuletzt geandert4/2/2026

Quellenvd

Honeypot-Sichtungen0

Betroffene Produkte

apple:ipadosapple:iphone_osapple:macosapple:safariapple:tvosapple:visionosapple:watchos

Schwachen (CWE)

CWE-119

Referenzen

https://support.apple.com/en-us/122066(product-security@apple.com)

https://support.apple.com/en-us/122068(product-security@apple.com)

https://support.apple.com/en-us/122071(product-security@apple.com)

https://support.apple.com/en-us/122072(product-security@apple.com)

https://support.apple.com/en-us/122073(product-security@apple.com)

https://support.apple.com/en-us/122074(product-security@apple.com)

http://www.openwall.com/lists/oss-security/2025/08/02/1(af854a3a-2127-422b-91ae-364da2661108)

IOC Korrelationen

Keine Korrelationen erfasst

This product uses data from the NVD API but is not endorsed or certified by the NVD.