VDB

CVE-2025-46299

CVE-2025-46299 PUBLISHED CVSS 4.300000190734863 MEDIUM

A memory initialization issue was addressed with improved memory handling. This issue is fixed in tvOS 26.2, Safari 26.2, watchOS 26.2, visionOS 26.2, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2. Processing maliciously crafted web content may disclose internal states of the app.

EPSS 0.03% · 8.3th percentile

Risk Scores

CVSS 3.1
4.300000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
EPSS Score
0.03%
8.3th percentile

Affected Products

VendorProductVersions
appletvos0
applewatchos0
ApplewatchOS*
applevisionos0
applesafari0
AppleSafari*
applemacos0
AppleiOS and iPadOSunspecified
ApplemacOS*
ApplevisionOSunspecified
appleiphone_os0
AppletvOSunspecified
appleipados0

Timeline

  • Apr 22, 2025 CVE ID Reserved
  • Jan 9, 2026 CVE Published
  • Jan 10, 2026 EPSS Score
  • Jan 13, 2026 EPSS Score
  • Jan 16, 2026 EPSS Score
  • Jan 19, 2026 EPSS Score
  • Jan 22, 2026 EPSS Score
  • Jan 26, 2026 EPSS Score
  • Jan 29, 2026 EPSS Score
  • Feb 1, 2026 EPSS Score
  • Feb 4, 2026 EPSS Score
  • Feb 7, 2026 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›