Primary

Context

Apple Safari Address Bar Spoofing Vulnerability

Vulnerability

Patched

A vulnerability in Apple Safari was introduced by insufficient validation of web content, which could be exploited to spoof the address bar. This issue affects Safari 26 and macOS Tahoe 26. The vulnerability allows malicious websites to manipulate how URLs are displayed, potentially misleading users about the site's authenticity.

Impact

Exploitation of this vulnerability can lead to address bar spoofing, where a malicious website can trick users into believing they are on a different site by altering the URL display.

Added: Sep 16, 2025, 12:12 AM

Updated: Sep 16, 2025, 12:12 AM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.4

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.4

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apple Safari Address Bar Spoofing Vulnerability

Vulnerability

Impact

Affected Products

Apple Safari

Apple macOS Tahoe

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating