VDB
DEBIAN-CVE-2025-24223
DEBIAN-CVE-2025-24223
PUBLISHED
CVSS 8 HIGH
The issue was addressed with improved memory handling. This issue is fixed in Safari 18.5, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, tvOS 18.5, visionOS 2.5, watchOS 11.5. Processing maliciously crafted web content may lead to memory corruption.
Risk Scores
CVSS 3.1
8
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:11 | webkit2gtk | 2.40.1-1, *, 2.41.6-1 |
| Debian:14 | wpewebkit | 0, 0 |
| Debian:11 | wpewebkit | 2.38.0-1, 2.32.4-1, 2.34.1-1 |
| Debian:14 | webkit2gtk | 0, 0 |
| Debian:13 | wpewebkit | 0, 0 |
| Debian:13 | webkit2gtk | 0, 0 |
| Debian:12 | wpewebkit | 2.48.0-1, 2.48.2-1, 2.50.5-1 |
| Debian:12 | webkit2gtk | 2.40.3-2, 2.40.3-2, 2.40.3-2 |
Exploit Intelligence
- macos_v2_generated.go (github-poc)
- macos_v1_generated.go (github-poc)
- ios_v2_generated.go (github-poc)
- ios_v1_generated.go (github-poc)
- visionos_v2_generated.go (github-poc)
- safari_v2_generated.go (github-poc)
- watchos_v2_generated.go (github-poc)
- tvos_v2_generated.go (github-poc)
Timeline
- May 12, 2025 CVE Published
- Apr 28, 2026 CVE Updated