T
his issue was addressed through improved state management. This issue is fixed in Safari 18.6, iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6, watchOS 11.6, visionOS 2.6. Processing maliciously crafted web content may disclose sensitive user information.
References
| Link | Resource |
|---|---|
| https://support.apple.com/en-us/124147 | Release Notes Vendor Advisory |
| https://support.apple.com/en-us/124149 | Release Notes Vendor Advisory |
| https://support.apple.com/en-us/124152 | Release Notes Vendor Advisory |
| https://support.apple.com/en-us/124153 | Release Notes Vendor Advisory |
| https://support.apple.com/en-us/124154 | Release Notes Vendor Advisory |
| https://support.apple.com/en-us/124155 | Release Notes Vendor Advisory |
| http://seclists.org/fulldisclosure/2025/Aug/0 | |
| http://seclists.org/fulldisclosure/2025/Jul/30 | |
| http://seclists.org/fulldisclosure/2025/Jul/32 | |
| http://seclists.org/fulldisclosure/2025/Jul/35 | |
| http://seclists.org/fulldisclosure/2025/Jul/36 | |
| http://www.openwall.com/lists/oss-security/2025/08/02/1 | |
| https://lists.debian.org/debian-lts-announce/2025/08/msg00015.html |
Configurations
Configuration 1 (hide)
|
History
04 Nov 2025, 22:16
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
03 Nov 2025, 20:18
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
03 Nov 2025, 19:15
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
31 Jul 2025, 20:47
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-07-30 00:15
Updated : 2025-11-04 22:16
NVD link : CVE-2025-43227
Mitre link : CVE-2025-43227
CVE.ORG link : CVE-2025-43227
JSON object : View
CWE
CWE-359
Exposure of Private Personal Information to an Unauthorized Actor