Apple Safari
Moderate fix1 remedy
cpe:2.3:o:apple:safari:*:*:*:*:*:*:*
Moderate fix1 remedy
Actively Exploited in the Wild
This vulnerability is being actively exploited in the wild.
Apple WebKit and JavaScriptCore Arbitrary Code Execution Vulnerability
Vulnerability
Exploited
Patched
A vulnerability allowing arbitrary code execution has been identified in the WebKit component of multiple Apple products, including Safari, iOS, iPadOS, macOS Sequoia, and visionOS. This vulnerability arises from improper handling of maliciously crafted web content. Notably, there are reports of this issue being actively exploited on Intel-based Mac systems.
Impact
Exploitation of this vulnerability could lead to arbitrary code execution on the affected system.
Remediation
Users can upgrade to Safari 18.1.1, iOS 18.1.1, iPadOS 18.1.1, macOS Sequoia 15.1.1, or visionOS 2.1.1. Instructions for downloading these updates are available on the Apple Software Updates page. For Debian users, this vulnerability has been addressed in the webkit2gtk package version 2.46.4-1~deb11u1.
Added: May 15, 2026, 11:05 AM
Updated: May 15, 2026, 11:05 AM
Vulnerability Rating
Custom Algorithm
spread
9.0impact
7.5exploitability
5.5remediation
7.7relevance
0.0threat
8.0urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.