Apple visionOS
Moderate fix1 remedy
cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*
Moderate fix1 remedy
Apple WebKit Memory Corruption Vulnerability Allowing Process Crashes
Vulnerability
Patched
A vulnerability in WebKit, the engine used by Safari, has been identified that allows processing of maliciously crafted web content to lead to memory corruption. This issue can cause unexpected crashes of the Safari browser. The vulnerability is present in WebKit on various Apple platforms, including iOS, iPadOS, watchOS, tvOS, and visionOS, all in version 26.1. The root cause of the vulnerability is improper memory management when handling certain web content, which can be exploited to corrupt memory and disrupt normal processing.
Impact
Exploitation of this vulnerability can cause memory corruption, leading to unexpected crashes of the affected application or process. However, such memory corruption vulnerabilities can often be exploited to execute arbitrary code under certain conditions.
Remediation
Users can update to Safari 26.1, which is available on macOS Sonoma and Sequoia, as well as on iOS 26.1, iPadOS 26.1, watchOS 26.1, tvOS 26.1, and visionOS 26.1.
Added: Nov 4, 2025, 2:51 AM
Updated: Nov 4, 2025, 2:51 AM
Vulnerability Rating
Custom Algorithm
spread
8.4impact
0.6exploitability
4.4remediation
7.7relevance
0.9threat
0.0urgency
2.9incentive
0.8Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.