Apple

Safari

1591 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2025-24167

  • EPSS 0.34%
  • Veröffentlicht 31.03.2025 23:15:16
  • Zuletzt bearbeitet 02.04.2026 19:19:10

This issue was addressed through improved state management. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, watchOS 11.4. A download's origin may be incorrectly associated.

7.5

CVE-2024-54551

  • EPSS 0.16%
  • Veröffentlicht 20.03.2025 23:53:43
  • Zuletzt bearbeitet 02.04.2026 19:18:54

The issue was addressed with improved memory handling. This issue is fixed in Safari 17.6, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, tvOS 17.6, visionOS 1.3, watchOS 10.6. Processing web content may lead to a denial-of-service.

10

CVE-2025-24201

Warnung
  • EPSS 0.2%
  • Veröffentlicht 11.03.2025 18:15:30
  • Zuletzt bearbeitet 03.04.2026 11:45:20

An out-of-bounds write issue was addressed with improved checks to prevent unauthorized actions. This issue is fixed in Safari 18.3.1, iOS 15.8.4 and iPadOS 15.8.4, iOS 16.7.11 and iPadOS 16.7.11, iOS 18.3.2 and iPadOS 18.3.2, iPadOS 17.7.6, macOS Se...

5.5

CVE-2024-44192

  • EPSS 0.14%
  • Veröffentlicht 10.03.2025 19:15:38
  • Zuletzt bearbeitet 02.04.2026 19:18:18

The issue was addressed with improved checks. This issue is fixed in Safari 18, iOS 18 and iPadOS 18, macOS Sequoia 15, tvOS 18, visionOS 2, watchOS 11. Processing maliciously crafted web content may lead to an unexpected process crash.

6.5

CVE-2024-54467

  • EPSS 0.12%
  • Veröffentlicht 10.03.2025 19:15:38
  • Zuletzt bearbeitet 02.04.2026 19:18:40

A cookie management issue was addressed with improved state management. This issue is fixed in Safari 18, iOS 18 and iPadOS 18, macOS Sequoia 15, tvOS 18, visionOS 2, watchOS 11. A malicious website may exfiltrate data cross-origin.

6.5

CVE-2024-54658

  • EPSS 0.21%
  • Veröffentlicht 10.02.2025 19:15:39
  • Zuletzt bearbeitet 02.04.2026 19:18:56

The issue was addressed with improved memory handling. This issue is fixed in Safari 17.4, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, visionOS 1.1, watchOS 10.4. Processing web content may lead to a denial-of-service.

6.5

CVE-2025-24162

  • EPSS 1.18%
  • Veröffentlicht 27.01.2025 22:15:20
  • Zuletzt bearbeitet 02.04.2026 19:19:10

This issue was addressed through improved state management. This issue is fixed in Safari 18.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, tvOS 18.3, visionOS 2.3, watchOS 11.3. Processing maliciously crafted web content may lead to an unexpected ...

7.5

CVE-2025-24169

  • EPSS 0.04%
  • Veröffentlicht 27.01.2025 22:15:20
  • Zuletzt bearbeitet 02.04.2026 19:19:12

A logging issue was addressed with improved data redaction. This issue is fixed in Safari 18.3, macOS Sequoia 15.3. A malicious app may be able to bypass browser extension authentication.

8.8

CVE-2025-24150

  • EPSS 0.37%
  • Veröffentlicht 27.01.2025 22:15:19
  • Zuletzt bearbeitet 02.04.2026 19:19:07

A privacy issue was addressed with improved handling of files. This issue is fixed in Safari 18.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3. Copying a URL from Web Inspector may lead to command injection.

6.5

CVE-2025-24158

  • EPSS 0.86%
  • Veröffentlicht 27.01.2025 22:15:19
  • Zuletzt bearbeitet 02.04.2026 19:19:09

The issue was addressed with improved memory handling. This issue is fixed in Safari 18.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, tvOS 18.3, visionOS 2.3, watchOS 11.3. Processing web content may lead to a denial-of-service.