Primary

Context

Apple WebKit Safari Tracking Vulnerability

Vulnerability

Patched

A vulnerability in the WebKit component of Safari allows websites to track users through Safari web extensions. This issue is present in Safari 26.3 on macOS Tahoe, as well as in iOS 26.3, iPadOS 26.3, and visionOS 26.3. The vulnerability arises from a logic issue that was addressed with improved state management.

Impact

Exploitation of this vulnerability could lead to unauthorized tracking of users via Safari web extensions.

Remediation

Users can update to Safari 26.3 on macOS Tahoe, or to iOS 26.3, iPadOS 26.3, or visionOS 26.3 to address this vulnerability.

Added: Feb 11, 2026, 11:25 PM

Updated: Feb 11, 2026, 11:25 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.3

remediation

7.7

relevance

2.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.3

remediation

7.7

relevance

2.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apple WebKit Safari Tracking Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Apple iPadOS

Apple macOS Tahoe

Apple visionOS

Apple Safari

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating