Primary

Context

Apple WebKit Memory Corruption Vulnerability Allowing Process Crashes

Vulnerability

Patched

A vulnerability in WebKit, the engine used by Safari, has been identified that allows processing of maliciously crafted web content to lead to memory corruption. This issue can cause unexpected crashes of the affected process. The vulnerability is present in WebKit components across multiple Apple operating systems, including iOS, iPadOS, watchOS, and tvOS, all in version 26.1. Additionally, it affects Safari 26.1 on macOS.

Impact

Exploitation of this vulnerability can cause memory corruption, leading to unexpected process crashes. However, in the context of WebKit, such memory corruption can often be exploited to execute arbitrary code.

Added: Nov 4, 2025, 2:53 AM

Updated: Nov 4, 2025, 2:53 AM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

0.6

exploitability

4.4

remediation

7.7

relevance

0.9

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

0.6

exploitability

4.4

remediation

7.7

relevance

0.9

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apple WebKit Memory Corruption Vulnerability Allowing Process Crashes

Vulnerability

Impact

Affected Products

Apple visionOS

Apple iPadOS

Apple tvOS

Apple watchOS

Apple macOS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating