7.1

CVE-2026-43725

Medienbericht
The issue was addressed with improved input validation. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. A malicious website may be able to process restricted web content outside the sandbox.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AppleSafari Version < 26.5.2
AppleiPadOS Version < 26.5.2
AppleiPhone OS Version < 26.5.2
ApplemacOS Version >= 26.0 < 26.5.2
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.31% 0.231
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0 7.1 2.8 3.7
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Für Zugriff zu Vulnerability Intelligence ist ein VulnDex Zugang erforderlich.
VulnDex Intel
Media Report
30.06.2026 09:41
https://support.apple.com/en-us/127594
Vendor Advisory
https://support.apple.com/en-us/127595
Vendor Advisory
https://support.apple.com/en-us/127685
Vendor Advisory