CVE-2025-24180 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

The issue was addressed with improved input validation. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, visionOS 2.4, watchOS…
High CVSS: 8.1

CVE-2025-24180

The issue was addressed with improved input validation. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, visionOS 2.4, watchOS 11.4. A malicious website may be able to claim WebAuthn credentials from another website that shares a registrable suffix.
Vendor
Apple
Product
Safari
CWE
CWE-601
Yayın Tarihi
2025-03-31 23:15:17
Güncelleme
2026-04-02 19:19:14
Source Identifier
product-security@apple.com
KEV Date Added
-

Kategoriler

CWE-601 Safari HIGH Apple 2025

Referanslar

https://support.apple.com/en-us/122371 https://support.apple.com/en-us/122373 https://support.apple.com/en-us/122376 https://support.apple.com/en-us/122378 https://support.apple.com/en-us/122379 http://seclists.org/fulldisclosure/2025/Apr/12 http://seclists.org/fulldisclosure/2025/Apr/13 http://seclists.org/fulldisclosure/2025/Apr/2 http://seclists.org/fulldisclosure/2025/Apr/4 http://seclists.org/fulldisclosure/2025/Apr/8