CVE-2026-20691

Medium CVSS: 4.3

An authorization issue was addressed with improved state management. This issue is fixed in Safari 26.4, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, visionOS 26.4, watchOS 26.4. A maliciously crafted webpage may be able to fingerprint the user.

Vendor

Apple

Product

Safari

CWE

CWE-497

Yayın Tarihi

2026-03-25 01:17:05

Güncelleme

2026-03-25 20:52:59

Source Identifier

product-security@apple.com

KEV Date Added

Kategoriler

CWE-497 Safari MEDIUM Apple 2026

Referanslar

https://support.apple.com/en-us/126792 https://support.apple.com/en-us/126794 https://support.apple.com/en-us/126798 https://support.apple.com/en-us/126799 https://support.apple.com/en-us/126800

Benzer Kayıtlar

High

CVE-2025-43264

The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.6. Processing a malicious…

High

CVE-2025-43257

This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sequoia 15.6. An app may be ab…

Medium

CVE-2025-43238

An integer overflow was addressed with improved input validation. This issue is fixed in macOS Sequoia 15.6, macOS Sonom…

Low

CVE-2025-43236

A type confusion issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.6, macOS Son…

High

CVE-2025-43219

The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.6. Processing a malicious…

Medium

CVE-2025-43210

An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 18.6 and iPadOS 18…