9.8
CVE-2025-24264
- EPSS 0.86%
- Veröffentlicht 31.03.2025 23:15:23
- Zuletzt bearbeitet 02.04.2026 19:19:29
- Quelle product-security@apple.com
- CVE-Watchlists
- Unerledigt
The issue was addressed with improved memory handling. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, tvOS 18.4, visionOS 2.4, watchOS 11.4. Processing maliciously crafted web content may lead to an unexpected Safari crash.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.86% | 0.54 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 9.8 | 3.9 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
CWE-400 Uncontrolled Resource Consumption
The product does not properly control the allocation and maintenance of a limited resource.
https://support.apple.com/en-us/122371
https://support.apple.com/en-us/122378
https://support.apple.com/en-us/122373
https://support.apple.com/en-us/122377
https://support.apple.com/en-us/122379
https://support.apple.com/en-us/122372
https://support.apple.com/en-us/122376
http://seclists.org/fulldisclosure/2025/Apr/13
https://lists.debian.org/debian-lts-announce/2025/06/msg00016.html
http://seclists.org/fulldisclosure/2025/Apr/8
http://seclists.org/fulldisclosure/2025/Apr/11
http://seclists.org/fulldisclosure/2025/Apr/12
http://seclists.org/fulldisclosure/2025/Apr/4
http://seclists.org/fulldisclosure/2025/Apr/5
http://seclists.org/fulldisclosure/2025/Apr/2