VDB

CISA-2025-43227

CISA-2025-43227 PUBLISHED CVSS 7.5 HIGH

Reported by apple · Published July 29, 2025

This issue was addressed through improved state management. This issue is fixed in Safari 18.6, iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6, watchOS 11.6, visionOS 2.6. Processing maliciously crafted web content may disclose sensitive user information.

Risk Scores

CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected Products

VendorProductVersions
AppleSafariunspecified
ApplemacOSunspecified
AppletvOSunspecified
ApplevisionOSunspecified
ApplewatchOSunspecified
AppleiOS and iPadOSunspecified
AppleiOS and iPadOSunspecified, *
ApplewatchOSunspecified, *
ApplemacOSunspecified, unspecified
AppleSafari*, unspecified
AppletvOSunspecified, *
ApplevisionOSunspecified, *

Timeline

  • Jul 29, 2025 CVE Published
  • Nov 4, 2025 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›