CVE-2025-43240

Medium CVSS: 6.2

A logic issue was addressed with improved checks. This issue is fixed in Safari 18.6, macOS Sequoia 15.6. A download's origin may be incorrectly associated.

Vendor

Apple

Product

Safari

CWE

CWE-703

Yayın Tarihi

2025-07-30 00:15:35

Güncelleme

2026-04-02 19:20:11

Source Identifier

product-security@apple.com

KEV Date Added

Kategoriler

CWE-703 Safari MEDIUM Apple 2025

Referanslar

https://support.apple.com/en-us/124149 https://support.apple.com/en-us/124152 http://seclists.org/fulldisclosure/2025/Aug/0 http://seclists.org/fulldisclosure/2025/Jul/32 http://www.openwall.com/lists/oss-security/2025/08/02/1 https://lists.debian.org/debian-lts-announce/2025/08/msg00015.html

Benzer Kayıtlar

High

CVE-2025-43264

The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.6. Processing a malicious…

High

CVE-2025-43257

This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sequoia 15.6. An app may be ab…

Medium

CVE-2025-43238

An integer overflow was addressed with improved input validation. This issue is fixed in macOS Sequoia 15.6, macOS Sonom…

Low

CVE-2025-43236

A type confusion issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.6, macOS Son…

High

CVE-2025-43219

The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.6. Processing a malicious…

Medium

CVE-2025-43210

An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 18.6 and iPadOS 18…