Lucene search
K

110 matches found

NVD
NVD
added 4 days ago7 views

CVE-2026-43715

A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to memory corruption...

8.8CVSS0.0036EPSS
Exploits0References3
CVE
CVE
added 4 days ago8 views

CVE-2026-43717

The CVE-2026-43717 entry describes a use-after-free in Safari related to processing malicious web content. Affected products are Safari across macOS and iOS/iPadOS, with fixed versions Safari 26.5.2, iOS 26.5.2, iPadOS 26.5.2, and macOS Tahoe 26.5.2. Root cause stated as improved memory managemen...

6.5CVSS5.8AI score0.00189EPSS
Exploits0References3Affected Software4
ATTACKERKB
ATTACKERKB
added 4 days ago6 views

CVE-2026-43746

A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an unexpected Safari crash...

6.5CVSS5.8AI score0.00196EPSS
Exploits0References4
CVE
CVE
added 4 days ago9 views

CVE-2026-43676

CVE-2026-43676 affects WebKit-related components used in Safari/WebKit on macOS Tahoe and iOS/iPadOS, with an out-of-bounds access issue addressed by improved bounds checking. The vulnerability leads to potential crashes when processing malicious web content, and is fixed in Safari 26.5.2 (and re...

6.5CVSS5.8AI score0.00257EPSS
Exploits0References3Affected Software4
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in WebKit2GTK

A memory corruption issue has been resolved through improved state management. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 16.2, and iPadOS 16.2, as well as watchOS 9.2. Processing maliciously crafted web content may lead to arbitrary code execution...

8.8CVSS7.5AI score0.0119EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/11 8:8 p.m.13 views

CVE-2026-28946

A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5, macOS Tahoe 26.5. Processing maliciously crafted web content may lead to an unexpected Safari crash...

6.5CVSS5.8AI score0.00393EPSS
Exploits0References3
OSV
OSV
added 2026/05/06 2:45 p.m.5 views

BIT-JAVA-2026-20652

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.3, iOS 18.7.5 and iPadOS 18.7.5, iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, visionOS 26.3. A remote attacker may be able to cause a denial-of-service...

7.5CVSS5.8AI score0.00608EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/03/26 3:16 p.m.4 views

CVE-2026-20691

A flaw was found in WebKitGTK. A maliciously crafted web page can cause an authorization issue due to improper state management and may be able to fingerprint the user. Mitigation Do not visit untrusted web pages or load untrusted web content with WebKitGTK. In Red Hat Enterprise Linux 7, the...

4.3CVSS5.9AI score0.00276EPSS
Exploits0References4
EUVD
EUVD
added 2026/03/25 3:31 a.m.9 views

EUVD-2026-15129

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.4, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, visionOS 26.4. Processing maliciously crafted web content may lead to an unexpected process crash...

5.8AI score0.00572EPSS
Exploits0References5
EUVD
EUVD
added 2026/03/25 3:31 a.m.3 views

EUVD-2026-15149

A logic issue was addressed with improved checks. This issue is fixed in Safari 26.4, iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4. Visiting a maliciously crafted website may lead to a cross-site scripting attack...

5.6AI score0.00276EPSS
Exploits0References5
OSV
OSV
added 2026/03/25 1:17 a.m.3 views

DEBIAN-CVE-2026-20691

An authorization issue was addressed with improved state management. This issue is fixed in Safari 26.4, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, visionOS 26.4, watchOS 26.4. A maliciously crafted webpage may be able to fingerprint the user...

4.3CVSS5.2AI score0.00276EPSS
Exploits0References1
CVE
CVE
added 2026/03/25 12:31 a.m.25 views

CVE-2026-28871

CVE-2026-28871 is a logic issue that can enable cross-site scripting when visiting a malicious website. The vulnerability is fixed in Apple platforms: Safari 26.4, iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, and macOS Tahoe 26.4. Related Nessus/OpenVAS entries confirm affected WebKit/...

4.3CVSS5.6AI score0.00276EPSS
Exploits0References4Affected Software4
Vulnrichment
Vulnrichment
added 2026/02/11 10:58 p.m.3 views

CVE-2026-20656

A logic issue was addressed with improved validation. This issue is fixed in iOS 18.7.5 and iPadOS 18.7.5, Safari 26.3, macOS Tahoe 26.3. An app may be able to access a user's Safari history...

5.5AI score0.00115EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/01/09 11:56 a.m.10 views

CVE-2018-4438

A logic issue existed resulting in memory corruption. This was addressed with improved state management. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9...

8.8CVSS6AI score0.05827EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:56 a.m.9 views

CVE-2018-4195

An inconsistent user interface issue was addressed with improved state management. This issue affected versions prior to Safari 12...

6.5CVSS6.1AI score0.00966EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:55 a.m.9 views

CVE-2018-4362

An inconsistent user interface issue was addressed with improved state management. This issue affected versions prior to Safari 11.1.2, iOS 12...

6.5CVSS5.9AI score0.00985EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:55 a.m.5 views

CVE-2018-4445

"Clear History and Website Data" did not clear the history. The issue was addressed with improved data deletion. This issue affected versions prior to iOS 12.1.1, Safari 12.0.2...

4.3CVSS5.9AI score0.00599EPSS
Exploits0References1
CVE
CVE
added 2025/12/17 8:46 p.m.27 views

CVE-2025-43501

CVE-2025-43501 affects WebKitGTK/WebKitGTK4. The connected advisories document a buffer overflow in processing malicious web content that can lead to an unexpected process crash in affected GTK-based WebKit runtimes. The issue is fixed in WebKitGTK/WebKitGTK4 by version 2.50.4 (and related packag...

4.3CVSS6.2AI score0.00686EPSS
Exploits0References5Affected Software5
CNNVD
CNNVD
added 2025/12/17 12:0 a.m.3 views

Apple多款产品 安全漏洞

Apple iOS and others are products of Apple Inc. Apple iOS is an operating system developed for mobile devices. apple macOS is a specialized operating system developed for Mac computers. apple iPadOS is an operating system for iPad tablet computers. A security vulnerability exists in multiple Appl...

8.8CVSS7.7AI score0.08439EPSS
Exploits8References8
Positive Technologies
Positive Technologies
added 2025/12/12 12:0 a.m.2 views

PT-2025-51892

Name of the Vulnerable Software and Affected Versions Apple Safari versions prior to 26.2 iOS versions prior to 18.7.3 iPadOS versions prior to 18.7.3 macOS Tahoe versions prior to 26.2 visionOS versions prior to 26.2 WebKitGTK affected versions not specified webkit2gtk in Debian Linux affected...

4.3CVSS8.1AI score0.00686EPSS
Exploits0References19
Rows per page
Query Builder