Primary

Context

Apple WebKit Type Confusion Vulnerability Leading to Safari Crash

Vulnerability

Patched

A type confusion vulnerability in WebKit, the engine used by Safari, has been identified. This issue affects multiple Apple operating systems, including watchOS 11.5, tvOS 18.5, iPadOS 17.7.7 and 18.5, macOS Sequoia 15.5, and visionOS 2.5. The vulnerability arises from improper handling of floats, which can be exploited by processing maliciously crafted web content, leading to memory corruption and causing Safari to crash unexpectedly.

Impact

Exploitation of this vulnerability causes Safari to crash, disrupting the user experience and potentially leading to a denial-of-service condition.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apple WebKit Type Confusion Vulnerability Leading to Safari Crash

Vulnerability

Impact

Affected Products

Apple watchOS

Apple tvOS

Apple iPadOS

Apple visionOS

Apple Safari

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating