CVE-2025-31277

HIGH8.8⚠ KEVEPSS 0.25%

Apple Multiple Products Buffer Overflow Vulnerability

發布日:2025/7/30修改日:2026/4/28加入 CISA KEV 日:2026/3/20

描述

The issue was addressed with improved memory handling. This issue is fixed in Safari 18.6, iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6, visionOS 2.6, watchOS 11.6. Processing maliciously crafted web content may lead to memory corruption.

受影響套件(2)

Debian/webkit2gtkfrom 0, < 2.50.0-1
Debian/wpewebkitfrom 0

CVSS 分數

來源	版本	嚴重程度	向量
osv	CVSS 3.1	HIGH8.8	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2025-31277