Apple

Safari

1591 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2026-20691

  • EPSS 0.04%
  • Veröffentlicht 25.03.2026 00:35:42
  • Zuletzt bearbeitet 25.03.2026 20:52:59

An authorization issue was addressed with improved state management. This issue is fixed in Safari 26.4, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, visionOS 26.4, watchOS 26.4. A maliciously crafted webpage may be able to fingerprint the user.

4.3

CVE-2026-20664

  • EPSS 0.04%
  • Veröffentlicht 25.03.2026 00:32:56
  • Zuletzt bearbeitet 25.03.2026 20:53:38

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.4, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, visionOS 26.4. Processing maliciously crafted web content may lead to an unexpected process crash.

6.5

CVE-2026-20665

  • EPSS 0.17%
  • Veröffentlicht 25.03.2026 00:32:50
  • Zuletzt bearbeitet 25.03.2026 21:54:07

This issue was addressed through improved state management. This issue is fixed in Safari 26.4, iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, tvOS 26.4, visionOS 26.4, watchOS 26.4. Processing maliciously crafted web conte...

4.3

CVE-2026-28859

  • EPSS 0.04%
  • Veröffentlicht 25.03.2026 00:32:24
  • Zuletzt bearbeitet 25.03.2026 21:54:26

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.4, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, tvOS 26.4, visionOS 26.4, watchOS 26.4. A malicious website may be able to process restricted web content outside t...

4.3

CVE-2026-28861

  • EPSS 0.04%
  • Veröffentlicht 25.03.2026 00:32:03
  • Zuletzt bearbeitet 10.05.2026 14:16:48

A logic issue was addressed with improved state management. This issue is fixed in Safari 26.4, iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, visionOS 26.4. A malicious website may be able to access script message handlers...

6.5

CVE-2026-28857

  • EPSS 0.04%
  • Veröffentlicht 25.03.2026 00:31:54
  • Zuletzt bearbeitet 26.03.2026 18:25:21

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.4, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, visionOS 26.4. Processing maliciously crafted web content may lead to an unexpected process crash.

4.3

CVE-2026-28871

  • EPSS 0.04%
  • Veröffentlicht 25.03.2026 00:31:33
  • Zuletzt bearbeitet 30.03.2026 12:27:17

A logic issue was addressed with improved checks. This issue is fixed in Safari 26.4, iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4. Visiting a maliciously crafted website may lead to a cross-site scripting attack.

8.8

CVE-2023-43010

Medienbericht
  • EPSS 0.05%
  • Veröffentlicht 12.03.2026 01:15:54
  • Zuletzt bearbeitet 25.03.2026 18:45:58

The issue was addressed with improved memory handling. This issue is fixed in iOS 17.2 and iPadOS 17.2, macOS Sonoma 14.2, Safari 17.2, iOS 16.7.15 and iPadOS 16.7.15, iOS 15.8.7 and iPadOS 15.8.7. Processing maliciously crafted web content may lead ...

6.5

CVE-2026-20644

  • EPSS 0.07%
  • Veröffentlicht 11.02.2026 22:59:05
  • Zuletzt bearbeitet 02.04.2026 19:21:16

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.3, iOS 18.7.5 and iPadOS 18.7.5, iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, visionOS 26.3. Processing maliciously crafted web content may lead to an unexpected p...

7.5

CVE-2026-20652

  • EPSS 0.26%
  • Veröffentlicht 11.02.2026 22:59:04
  • Zuletzt bearbeitet 02.04.2026 19:21:17

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.3, iOS 18.7.5 and iPadOS 18.7.5, iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, visionOS 26.3. A remote attacker may be able to cause a denial-of-service.