CVE-2025-24158 | THREATINT

Description

The issue was addressed with improved memory handling. This issue is fixed in Safari 18.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, tvOS 18.3, visionOS 2.3, watchOS 11.3. Processing web content may lead to a denial-of-service.

PUBLISHED Reserved 2025-01-17 | Published 2025-01-27 | Updated 2026-05-21 | Assigner apple

Problem types

Processing web content may lead to a denial-of-service

Product status

Any version before 18.3

affected

Any version before 18.3

affected

Any version before 15.3

affected

Any version before 18.3

affected

Any version before 2.3

affected

Any version before 11.3

affected

References

lists.debian.org/debian-lts-announce/2025/02/msg00014.html

seclists.org/fulldisclosure/2025/Jan/20

seclists.org/fulldisclosure/2025/Jan/18

seclists.org/fulldisclosure/2025/Jan/15

seclists.org/fulldisclosure/2025/Jan/13

support.apple.com/en-us/122066

support.apple.com/en-us/122068

support.apple.com/en-us/122071

support.apple.com/en-us/122072

support.apple.com/en-us/122073

support.apple.com/en-us/122074

cve.org (CVE-2025-24158)

nvd.nist.gov (CVE-2025-24158)

Download JSON