Primary

Context

Apple WebKit Denial-of-Service and Process Crash Vulnerability

Vulnerability

Patched

A vulnerability in WebKit, the engine used by Safari and other Apple applications, can be exploited by processing maliciously crafted web content, leading to an unexpected process crash. This issue is present in WebKit versions bundled with macOS Tahoe 26.3, iOS 18.7.5, iPadOS 18.7.5, visionOS 26.3, and Safari 26.3. The vulnerability arises from improper memory handling, which has been addressed in the respective 26.3 updates for these platforms.

Impact

Exploitation of this vulnerability can cause a process to crash unexpectedly, disrupting the normal operation of the application or service using WebKit.

Added: Feb 12, 2026, 12:08 AM

Updated: Feb 12, 2026, 12:08 AM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.2

remediation

7.7

relevance

2.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.2

remediation

7.7

relevance

2.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apple WebKit Denial-of-Service and Process Crash Vulnerability

Vulnerability

Impact

Affected Products

Apple macOS Tahoe

Apple iPadOS

Apple visionOS

Apple Safari

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating