CVSS: 6.5EPSS: 0%CPEs: 7EXPL: 0CVE-2025-43265 – webkitgtk: Processing maliciously crafted web content may disclose internal states of the app
https://notcve.org/view.php?id=CVE-2025-43265
29 Jul 2025 — An out-of-bounds read was addressed with improved input validation. This issue is fixed in Safari 18.6, watchOS 11.6, visionOS 2.6, iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6. Processing maliciously crafted web content may disclose internal states of the app. Se solucionó una lectura fuera de los límites mejorando la validación de entrada. Este problema se solucionó en watchOS 11.6, visionOS 2.6, iOS 18.6 y iPadOS 18.6, macOS Sequoia 15.6 y tvOS 18.6. • https://support.apple.com/en-us/124147 • CWE-125: Out-of-bounds Read •
CVSS: 8.8EPSS: 0%CPEs: 8EXPL: 0CVE-2025-43216 – webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash
https://notcve.org/view.php?id=CVE-2025-43216
29 Jul 2025 — A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 18.6, watchOS 11.6, iOS 18.6 and iPadOS 18.6, iPadOS 17.7.9, tvOS 18.6, macOS Sequoia 15.6, visionOS 2.6. Processing maliciously crafted web content may lead to an unexpected Safari crash. Se solucionó un problema de use-after-free mediante una mejor gestión de la memoria. Este problema se solucionó en watchOS 11.6, iOS 18.6 y iPadOS 18.6, iPadOS 17.7.9, tvOS 18.6, macOS Sequoia 15.6 y visionOS 2.6. • https://support.apple.com/en-us/124147 • CWE-416: Use After Free •
CVSS: 4.0EPSS: 0%CPEs: 3EXPL: 0CVE-2025-43217 – Apple Security Advisory 07-29-2025-2
https://notcve.org/view.php?id=CVE-2025-43217
29 Jul 2025 — The issue was addressed by adding additional logic. This issue is fixed in iPadOS 17.7.9, iOS 18.6 and iPadOS 18.6. Privacy Indicators for microphone or camera access may not be correctly displayed. El problema se solucionó añadiendo lógica adicional. Este problema está corregido en iPadOS 17.7.9, iOS 18.6 y iPadOS 18.6. • https://support.apple.com/en-us/124147 • CWE-359: Exposure of Private Personal Information to an Unauthorized Actor •
CVSS: 5.3EPSS: 0%CPEs: 3EXPL: 0CVE-2025-31276 – Apple Security Advisory 07-29-2025-2
https://notcve.org/view.php?id=CVE-2025-31276
29 Jul 2025 — This issue was addressed through improved state management. This issue is fixed in iOS 18.6 and iPadOS 18.6, iPadOS 17.7.9. Remote content may be loaded even when the 'Load Remote Images' setting is turned off. Este problema se solucionó mejorando la gestión del estado. Este problema se solucionó en iOS 18.6, iPadOS 18.6 y iPadOS 17.7.9. • https://support.apple.com/en-us/124147 • CWE-359: Exposure of Private Personal Information to an Unauthorized Actor •
CVSS: 4.0EPSS: 0%CPEs: 7EXPL: 0CVE-2025-43230 – Apple Security Advisory 07-29-2025-8
https://notcve.org/view.php?id=CVE-2025-43230
29 Jul 2025 — The issue was addressed with additional permissions checks. This issue is fixed in iPadOS 17.7.9, watchOS 11.6, visionOS 2.6, iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6. An app may be able to access user-sensitive data. El problema se solucionó con comprobaciones adicionales de permisos. Este problema está corregido en iPadOS 17.7.9, watchOS 11.6, visionOS 2.6, iOS 18.6 y iPadOS 18.6, macOS Sequoia 15.6 y tvOS 18.6. • https://support.apple.com/en-us/124147 • CWE-863: Incorrect Authorization •
CVSS: 4.0EPSS: 0%CPEs: 8EXPL: 0CVE-2025-43226 – Apple Security Advisory 07-29-2025-8
https://notcve.org/view.php?id=CVE-2025-43226
29 Jul 2025 — An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 11.6, iOS 18.6 and iPadOS 18.6, iPadOS 17.7.9, tvOS 18.6, macOS Sequoia 15.6, macOS Sonoma 14.7.7, visionOS 2.6. Processing a maliciously crafted image may result in disclosure of process memory. Se solucionó una lectura fuera de los límites mejorando la validación de entrada. Este problema se solucionó en watchOS 11.6, iOS 18.6 y iPadOS 18.6, iPadOS 17.7.9, tvOS 18.6, macOS Sequoia 15.6, macOS Sonoma 14.7.7 y... • https://support.apple.com/en-us/124147 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 0CVE-2025-24224 – Apple Security Advisory 07-29-2025-5
https://notcve.org/view.php?id=CVE-2025-24224
29 Jul 2025 — The issue was addressed with improved checks. This issue is fixed in tvOS 18.5, iOS 18.5 and iPadOS 18.5, iPadOS 17.7.9, macOS Sequoia 15.5, watchOS 11.5, visionOS 2.5, macOS Ventura 13.7.7. A remote attacker may be able to cause unexpected system termination. El problema se solucionó mejorando las comprobaciones. Este problema está corregido en tvOS 18.5, iOS 18.5 y iPadOS 18.5, iPadOS 17.7.9, macOS Sequoia 15.5, watchOS 11.5, visionOS 2.5 y macOS Ventura 13.7.7. • https://support.apple.com/en-us/122404 • CWE-754: Improper Check for Unusual or Exceptional Conditions •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2025-43227 – webkitgtk: Processing maliciously crafted web content may disclose sensitive user information
https://notcve.org/view.php?id=CVE-2025-43227
29 Jul 2025 — This issue was addressed through improved state management. This issue is fixed in Safari 18.6, iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6, watchOS 11.6, visionOS 2.6. Processing maliciously crafted web content may disclose sensitive user information. Este problema se solucionó mejorando la gestión de estado. Está corregido en iOS 18.6 y iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6, watchOS 11.6 y visionOS 2.6. • https://support.apple.com/en-us/124147 • CWE-359: Exposure of Private Personal Information to an Unauthorized Actor •
CVSS: 6.5EPSS: 0%CPEs: 8EXPL: 0CVE-2025-43211 – webkitgtk: Processing web content may lead to a denial-of-service
https://notcve.org/view.php?id=CVE-2025-43211
29 Jul 2025 — The issue was addressed with improved memory handling. This issue is fixed in Safari 18.6, macOS Sequoia 15.6, iPadOS 17.7.9, iOS 18.6 and iPadOS 18.6, tvOS 18.6, watchOS 11.6, visionOS 2.6. Processing web content may lead to a denial-of-service. El problema se solucionó mejorando la gestión de la memoria. Este problema está corregido en macOS Sequoia 15.6, iPadOS 17.7.9, iOS 18.6 y iPadOS 18.6, tvOS 18.6, watchOS 11.6 y visionOS 2.6. • https://support.apple.com/en-us/124147 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 8.8EPSS: 0%CPEs: 7EXPL: 0CVE-2025-43212 – webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash
https://notcve.org/view.php?id=CVE-2025-43212
29 Jul 2025 — The issue was addressed with improved memory handling. This issue is fixed in Safari 18.6, macOS Sequoia 15.6, iOS 18.6 and iPadOS 18.6, tvOS 18.6, watchOS 11.6, visionOS 2.6. Processing maliciously crafted web content may lead to an unexpected Safari crash. El problema se solucionó mejorando la gestión de la memoria. Este problema está corregido en macOS Sequoia 15.6, iOS 18.6 y iPadOS 18.6, tvOS 18.6, watchOS 11.6 y visionOS 2.6. • https://support.apple.com/en-us/124147 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •