VDB
DEBIAN-CVE-2025-24143
DEBIAN-CVE-2025-24143
PUBLISHED
CVSS 6.5 MEDIUM
The issue was addressed with improved access restrictions to the file system. This issue is fixed in Safari 18.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, visionOS 2.3. A maliciously crafted webpage may be able to fingerprint the user.
Risk Scores
CVSS v3.1
6.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:12 | wpewebkit | 0, 2.38.6-1, 2.39.91-1 |
| Debian:11 | webkit2gtk | 2.38.1-1, *, 2.32.3-1 |
| Debian:13 | webkit2gtk | 0, 0 |
| Debian:14 | wpewebkit | 0, 0 |
| Debian:14 | webkit2gtk | 0, 0 |
| Debian:11 | wpewebkit | 2.48.6-1, 0, 2.32.3-2 |
| Debian:13 | wpewebkit | 0, 0 |
| Debian:12 | webkit2gtk | 2.46.3-1, 0, 2.40.1-1 |
Timeline
- Jan 27, 2025 CVE Published
- Apr 28, 2026 CVE Updated