CVE-2025-31277

216.73.216.233

· Published 30/07/2025 00:15 · Modified 31/07/2025 21:00

Labels: CVE-2025-31277 2025-07-30 CVE-2025-31277 CWE-119 [email protected]

Essential information

Published: 30/07/2025 00:15
Modified: 31/07/2025 21:00
Author: —
Creator: —
CVSS: 8.8 HIGH (v3.1)
CISA KEV: No
CWE: —
CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CVSS metrics

Description

The issue was addressed with improved memory handling. This issue is fixed in Safari 18.6, watchOS 11.6, visionOS 2.6, iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6. Processing maliciously crafted web content may lead to memory corruption.

NVD status

Status: Analyzed — CVE has been recently published to the CVE List and has been received by the NVD.
Source: [email protected]
NVD: View on NVD

Affected products (CPE)

Product	CPE
apple / safari	`cpe:2.3:a:apple:safari::::::::`
apple / ipados	`cpe:2.3:o:apple:ipados::::::::`
apple / iphone os	`cpe:2.3:o:apple:iphone_os::::::::`
apple / macos	`cpe:2.3:o:apple:macos::::::::`
apple / tvos	`cpe:2.3:o:apple:tvos::::::::`
apple / visionos	`cpe:2.3:o:apple:visionos::::::::`
apple / watchos	`cpe:2.3:o:apple:watchos::::::::`

CVE-2025-31277

Essential information

CVSS metrics

Description

NVD status

Affected products (CPE)

References

Related entities

Attack reports (1)