This issue was addressed through improved state management. This issue is fixed in Safari 18.6, iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6, watchOS 11.6, visionOS 2.6. Processing maliciously crafted web content may disclose sensitive user information.
References
Link | Resource |
---|---|
https://support.apple.com/en-us/124147 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/124149 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/124152 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/124153 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/124154 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/124155 | Release Notes Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
31 Jul 2025, 20:47
Type | Values Removed | Values Added |
---|---|---|
References | () https://support.apple.com/en-us/124147 - Release Notes, Vendor Advisory | |
References | () https://support.apple.com/en-us/124149 - Release Notes, Vendor Advisory | |
References | () https://support.apple.com/en-us/124152 - Release Notes, Vendor Advisory | |
References | () https://support.apple.com/en-us/124153 - Release Notes, Vendor Advisory | |
References | () https://support.apple.com/en-us/124154 - Release Notes, Vendor Advisory | |
References | () https://support.apple.com/en-us/124155 - Release Notes, Vendor Advisory | |
CPE | cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:* cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:* cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:* |
|
First Time |
Apple macos
Apple ipados Apple visionos Apple tvos Apple safari Apple Apple watchos Apple iphone Os |
31 Jul 2025, 18:42
Type | Values Removed | Values Added |
---|---|---|
Summary | (es) Este problema se solucionó mejorando la gestión de estado. Está corregido en iOS 18.6 y iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6, watchOS 11.6 y visionOS 2.6. El procesamiento de contenido web manipulado con fines malintencionados puede revelar información confidencial del usuario. |
30 Jul 2025, 23:15
Type | Values Removed | Values Added |
---|---|---|
Summary | (en) This issue was addressed through improved state management. This issue is fixed in Safari 18.6, iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6, watchOS 11.6, visionOS 2.6. Processing maliciously crafted web content may disclose sensitive user information. | |
References |
|
30 Jul 2025, 18:15
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
|
CWE | CWE-359 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
30 Jul 2025, 00:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2025-07-30 00:15
Updated : 2025-07-31 20:47
NVD link : CVE-2025-43227
Mitre link : CVE-2025-43227
CVE.ORG link : CVE-2025-43227
JSON object : View
Products Affected
apple
- safari
- tvos
- ipados
- iphone_os
- visionos
- watchos
- macos
CWE
CWE-359
Exposure of Private Personal Information to an Unauthorized Actor