cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-54542,https://securityvulnerability.io/vulnerability/CVE-2024-54542,Authentication Flaw in Apple Products: Safari and iOS Vulnerability,"An authentication issue has been identified that compromises state management, potentially allowing access to Private Browsing tabs without proper authentication. This vulnerability affects various Apple products, including Safari and several operating systems. Updated versions, Safari 18.2, macOS Sequoia 15.2, watchOS 11.2, iOS 18.2, and iPadOS 18.2 address the flaw, ensuring enhanced security and user protection.",Apple,"Mac OS,Watch OS,iOS And iPad OS,Safari",7.5,HIGH,0.00044999999227002263,false,,false,false,false,,false,false,false,,2025-01-27T21:46:36.448Z,0
CVE-2025-24150,https://securityvulnerability.io/vulnerability/CVE-2025-24150,"Privacy Issue in Apple's macOS, iOS, and Safari Products","A privacy issue in Apple's macOS, Safari, and iOS platforms has been identified, wherein improper handling of file copying from the Web Inspector can lead to potential command injection attacks. The issue has been resolved in the latest versions of affected software, ensuring enhanced security for users. It's crucial for organizations and individuals to update their systems promptly to benefit from these important security enhancements.",Apple,"Mac OS,Safari,iOS And iPad OS",8.8,HIGH,0.0006200000061653554,false,,false,false,false,,false,false,false,,2025-01-27T21:46:32.259Z,0
CVE-2024-54543,https://securityvulnerability.io/vulnerability/CVE-2024-54543,Memory Corruption Vulnerability in Apple Operating Systems and Safari,"A memory corruption vulnerability exists in various Apple operating systems and the Safari browser due to improper memory handling. This vulnerability can be exploited through maliciously crafted web content, potentially leading to unexpected application behavior. The issue has been addressed in multiple Apple product updates, including visionOS, iOS, iPadOS, watchOS, tvOS, and macOS. Users are encouraged to update their devices to the latest versions to safeguard against this vulnerability.",Apple,"TV OS,Visionos,Mac OS,Watch OS,iOS And iPad OS,Safari",8.8,HIGH,0.0007999999797903001,false,,false,false,false,,false,false,false,,2025-01-27T21:46:30.578Z,0
CVE-2025-24143,https://securityvulnerability.io/vulnerability/CVE-2025-24143,"File System Access Vulnerability in Apple's macOS, iOS, iPadOS, Safari, and visionOS","A vulnerability exists in Apple's macOS, iOS, iPadOS, Safari, and visionOS products due to inadequate access restrictions in the file system. This flaw may allow a maliciously crafted webpage to exploit the user's privacy by fingerprinting their device. Apple has addressed this issue in the latest updates, enhancing file system access controls to mitigate potential threats. Users are encouraged to update their devices to the latest versions provided.",Apple,"Visionos,Mac OS,Safari,iOS And iPad OS",6.5,MEDIUM,0.0006000000284984708,false,,false,false,false,,false,false,false,,2025-01-27T21:46:05.639Z,0
CVE-2025-24162,https://securityvulnerability.io/vulnerability/CVE-2025-24162,Web Content Processing Flaw in Apple Products,"This vulnerability pertains to a flaw in the processing of specially crafted web content across various Apple products. This issue can lead to unexpected process crashes, affecting the usability and security of the devices involved. The flaw was addressed with improved state management techniques in recent software updates, ensuring more robust handling of web content.",Apple,"Visionos,TV OS,Mac OS,Safari,Watch OS,iOS And iPad OS",9.8,CRITICAL,0.0004400000034365803,false,,false,false,false,,false,false,false,,2025-01-27T21:45:54.015Z,0
CVE-2025-24158,https://securityvulnerability.io/vulnerability/CVE-2025-24158,Memory Handling Vulnerability in Apple Devices,"A significant memory handling issue in multiple Apple platforms could potentially allow attackers to exploit web content processing, resulting in a denial-of-service. This vulnerability has been addressed in recent updates, ensuring that affected devices such as visionOS, Safari, iOS, iPadOS, macOS Sequoia, watchOS, and tvOS are now better protected against such threats.",Apple,"Visionos,TV OS,Mac OS,Safari,Watch OS,iOS And iPad OS",6.5,MEDIUM,0.0004400000034365803,false,,false,false,false,,false,false,false,,2025-01-27T21:45:49.015Z,0
CVE-2025-24128,https://securityvulnerability.io/vulnerability/CVE-2025-24128,Address Bar Spoofing in Safari and iOS Products by Apple,"This vulnerability involves address bar spoofing, where users visiting a malicious website might not see the actual URL, leading to confusion and potential phishing attacks. It affects the Safari browser and related Apple operating systems, highlighting the need for vigilance while browsing. Apple has addressed this issue by implementing additional logic to improve security in the affected versions.",Apple,"Mac OS,Safari,iOS And iPad OS",4.3,MEDIUM,0.0005200000014156103,false,,false,false,false,,false,false,false,,2025-01-27T21:45:33.511Z,0
CVE-2025-24113,https://securityvulnerability.io/vulnerability/CVE-2025-24113,User Interface Spoofing in Apple's Products,"A vulnerability in Apple's macOS, iOS, iPadOS, Safari, and visionOS products can lead to a spoofing attack where users may be misled by manipulated interfaces. This issue is mitigated in recent updates that enhance the user interface, and it emphasizes the importance of using the latest software versions to ensure protection against potential exploits that could arise from visiting malicious websites.",Apple,"Visionos,Mac OS,Safari,iOS And iPad OS",4.3,MEDIUM,0.0005200000014156103,false,,false,false,false,,false,false,false,,2025-01-27T21:45:26.736Z,0
CVE-2024-27856,https://securityvulnerability.io/vulnerability/CVE-2024-27856,Arbitrary Code Execution Vulnerability in Apple's macOS and iOS Products,"A vulnerability in various Apple products allows an attacker to process a specially crafted file, potentially leading to unexpected app termination or unauthorized arbitrary code execution. This flaw was addressed through enhanced validation checks and has been rectified in recent software updates across devices including macOS, iOS, iPadOS, Safari, watchOS, tvOS, and visionOS. Users are encouraged to update their systems to the latest versions to mitigate any risk associated with this vulnerability.",Apple,"TV OS,Visionos,Safari,iOS And iPad OS,Watch OS,Mac OS",7.8,HIGH,0.0004400000034365803,false,,false,false,false,,false,false,false,,2025-01-15T19:35:57.075Z,0
CVE-2024-54534,https://securityvulnerability.io/vulnerability/CVE-2024-54534,Safari 18.2 Fixes Memory Handling Issue to Prevent Malicious Content Abuse,"A memory corruption vulnerability has been identified affecting various Apple operating systems. This issue is caused by mishandling of memory when processing specially crafted web content, which can lead to unintended behavior or crashes. The vulnerability has been mitigated in the latest updates for watchOS, visionOS, tvOS, macOS, Safari, iOS, and iPadOS. Users are strongly advised to apply the corresponding updates to ensure protection against potential exploits that may arise from this issue.",Apple,"TV OS,Visionos,Mac OS,Watch OS,iOS And iPad OS,Safari",9.8,CRITICAL,0.001069999998435378,false,,false,false,false,,,false,false,,2024-12-12T02:15:00.000Z,0
CVE-2024-54505,https://securityvulnerability.io/vulnerability/CVE-2024-54505,iPadOS 17.7.3 addresses type confusion issue to prevent memory corruption,"A type confusion vulnerability has been identified in several Apple operating systems and applications that could allow attackers to execute maliciously crafted web content. This vulnerability stems from improper memory handling practices that may lead to memory corruption, posing risks to users' data integrity and security. Apple has addressed this flaw in specific versions including iPadOS, watchOS, macOS, and Safari, with patches already implemented in the latest updates. Users are encouraged to update their devices to safeguard against potential exploitation of this vulnerability.",Apple,"TV OS,Visionos,Mac OS,Watch OS,iPad OS,iOS And iPad OS,Safari",8.8,HIGH,0.0010600000387057662,false,,false,false,false,,,false,false,,2024-12-12T02:15:00.000Z,765
CVE-2024-54502,https://securityvulnerability.io/vulnerability/CVE-2024-54502,Safari Update Fixes Process Crash Issues with Maliciously Crafted Web Content,"A vulnerability exists within various Apple operating systems that can be triggered by processing malformed web content. This issue can lead to an unexpected process crash, potentially disrupting user experience and application functionality. The vulnerability has been mitigated with enhanced checks in the latest software updates, which secure affected systems against exploitation from specially crafted web content.",Apple,"TV OS,Visionos,Mac OS,Watch OS,iOS And iPad OS,Safari",6.5,MEDIUM,0.0006200000061653554,false,,false,false,false,,,false,false,,2024-12-12T02:15:00.000Z,161
CVE-2024-44246,https://securityvulnerability.io/vulnerability/CVE-2024-44246,Routing Issue in Safari Affects Apple Devices with Private Relay,"A routing issue within Safari has been discovered, specifically impacting Apple devices with Private Relay enabled. When a user adds a website to the Safari Reading List, this flaw may inadvertently expose the user's originating IP address to the website, compromising user privacy and security. This issue has been addressed in the latest updates, ensuring that user data remains protected.",Apple,"Mac OS,iPad OS,iOS And iPad OS,Safari",5.3,MEDIUM,0.0005200000014156103,false,,false,false,false,,,false,false,,2024-12-12T02:15:00.000Z,0
CVE-2024-44308,https://securityvulnerability.io/vulnerability/CVE-2024-44308,"Apple Addresses Web Content Execution Vulnerability in Safari, macOS Sequoia, iOS, iPadOS, and visionOS","A vulnerability exists within Apple Safari and various iOS products that allows for arbitrary code execution via specially crafted web content. The flaw was addressed with improved checks to mitigate the exploitation risk. Apple has released security updates for affected products including Safari, iOS, iPadOS, and macOS Sequoia versions, noting that there are indications this vulnerability may have been actively exploited on Intel-based Mac systems. Users are strongly encouraged to update their devices to the latest versions to enhance security.",Apple,"Safari,Mac OS,iOS And iPad OS,Visionos",8.8,HIGH,0.0017999999690800905,true,2024-11-21T00:00:00.000Z,true,false,true,2024-11-21T00:00:00.000Z,,true,false,,2024-11-20T00:15:00.000Z,4878
CVE-2024-44296,https://securityvulnerability.io/vulnerability/CVE-2024-44296,"Apple Addresses Content Security Policy Enforcement Issue in iOS, iPadOS, watchOS, and tvOS Updates","The issue was addressed with improved checks. This issue is fixed in tvOS 18.1, iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS 17.7.1, watchOS 11.1, visionOS 2.1, macOS Sequoia 15.1, Safari 18.1. Processing maliciously crafted web content may prevent Content Security Policy from being enforced.",Apple,"Visionos,iOS And iPad OS,TV OS,Watch OS,Mac OS,Safari",5.4,MEDIUM,0.0007300000288523734,false,,false,false,false,,,false,false,,2024-10-28T21:15:00.000Z,0
CVE-2024-44229,https://securityvulnerability.io/vulnerability/CVE-2024-44229,Information Leakage in Apple's Safari and Related Operating Systems,"An information leakage vulnerability was identified in Apple products, notably affecting Safari and various operating systems. This issue allowed private browsing sessions to unintentionally expose browsing history, raising concerns about user privacy. Apple addressed this vulnerability with additional validation measures in the latest updates of visionOS, iOS, iPadOS, macOS, and Safari, ensuring enhanced security for users during private browsing activities.",Apple,"Visionos,iOS And iPad OS,Mac OS,Safari",5.3,MEDIUM,0.0005200000014156103,false,,false,false,false,,,false,false,,2024-10-28T21:15:00.000Z,0
CVE-2024-44259,https://securityvulnerability.io/vulnerability/CVE-2024-44259,State Management Vulnerability in Apple Products,"A vulnerability exists within the state management of certain Apple products, enabling potential attackers to misuse established trust relationships to download malicious content onto user devices. This issue has been addressed in recent updates, specifically in iOS 17.7.1, iPadOS 17.7.1, visionOS 2.1, iOS 18.1, iPadOS 18.1, macOS Sequoia 15.1, and Safari 18.1. Users are encouraged to update their devices to ensure they are protected against this type of exploitation.",Apple,"Visionos,iOS And iPad OS,Mac OS,Safari",7.5,HIGH,0.0006000000284984708,false,,false,false,false,,,false,false,,2024-10-28T21:15:00.000Z,0
CVE-2024-44244,https://securityvulnerability.io/vulnerability/CVE-2024-44244,"Memory Corruption Vulnerability in Apple's iOS, macOS, and Other Products","A critical memory corruption vulnerability has been identified within Apple's software ecosystem, particularly affecting iOS, macOS, Safari, and other platforms. This flaw arises from improper input validation, which, when exploited, allows attackers to process maliciously crafted web content. Exploitation of this vulnerability can lead to unexpected application crashes, compromising the integrity and reliability of affected devices. Apple has released updates to remedy this issue in iOS 18.1, iPadOS 18.1, watchOS 11.1, visionOS 2.1, tvOS 18.1, macOS Sequoia 15.1, and Safari 18.1, urging users to apply these updates to protect their systems.",Apple,"Visionos,TV OS,Watch OS,iOS And iPad OS,Mac OS,Safari",4.3,MEDIUM,0.0006300000241026282,false,,false,false,false,,,false,false,,2024-10-28T21:15:00.000Z,0
CVE-2024-44155,https://securityvulnerability.io/vulnerability/CVE-2024-44155,Input Validation Flaw in Apple's Safari and iOS Products,"A flaw in input validation related to the handling of custom URL schemes in Apple's Safari browser and various iOS products has been identified. This issue allowed maliciously crafted web content to potentially bypass the iframe sandboxing policy, posing a risk to user data integrity and web application security. Apple has addressed this vulnerability with updates in Safari 18, iOS 17.7.1, iPadOS 17.7.1, macOS Sequoia 15, watchOS 11, iOS 18, and iPadOS 18. Users are encouraged to update their affected products to ensure optimal security.",Apple,"Mac OS,iOS And iPad OS,Watch OS,Safari",6.5,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2024-10-28T21:15:00.000Z,0
CVE-2024-44206,https://securityvulnerability.io/vulnerability/CVE-2024-44206,Apple Addresses Issue with URL Protocol Handling,"An issue exists in URL protocol handling that may lead to the circumvention of web content restrictions in certain Apple products. This vulnerability has been addressed with improved logic in recent versions of tvOS, visionOS, Safari, watchOS, iOS, iPadOS, and macOS. Users are encouraged to update their devices to the latest software versions to mitigate potential risks associated with this vulnerability.",Apple,"Watch OS,Mac OS,Safari,iOS And iPad OS,TV OS,Visionos",9.3,CRITICAL,0.0006600000197067857,false,,false,false,false,,,false,false,,2024-10-24T16:40:46.107Z,0
CVE-2024-44185,https://securityvulnerability.io/vulnerability/CVE-2024-44185,Apple Fixes Process Crash Vulnerability in iOS 17.6,"The issue was addressed with improved checks. This issue is fixed in tvOS 17.6, visionOS 1.3, Safari 17.6, watchOS 10.6, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6. Processing maliciously crafted web content may lead to an unexpected process crash.",Apple,"Watch OS,Mac OS,Safari,iOS And iPad OS,TV OS,Visionos",5.5,MEDIUM,0.0004600000102072954,false,,false,false,false,,,false,false,,2024-10-24T16:40:36.055Z,0
CVE-2024-40794,https://securityvulnerability.io/vulnerability/CVE-2024-40794,Safari Private Browsing Tab Access Fix,"This issue was addressed through improved state management. This issue is fixed in macOS Sonoma 14.6, iOS 17.6 and iPadOS 17.6, Safari 17.6. Private Browsing tabs may be accessed without authentication.",Apple,"Safari,iOS And iPad OS,Mac OS",5.3,MEDIUM,0.0008299999753944576,false,,false,false,false,,,false,false,,2024-07-29T22:17:20.010Z,0
CVE-2024-40782,https://securityvulnerability.io/vulnerability/CVE-2024-40782,Safari Fixes Use-After-Free Issue to Prevent Process Crashes,"A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, Safari 17.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3, macOS Sonoma 14.6. Processing maliciously crafted web content may lead to an unexpected process crash.",Apple,"Safari,iOS And iPad OS,Watch OS,Mac OS,Visionos,TV OS",6.5,MEDIUM,0.0007699999841861427,false,,false,false,false,,,false,false,,2024-07-29T22:17:16.599Z,0
CVE-2024-40776,https://securityvulnerability.io/vulnerability/CVE-2024-40776,"Apple Addresses Use-After-Free Vulnerability in iOS, iPadOS, macOS, and Other Products","A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, Safari 17.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3, macOS Sonoma 14.6. Processing maliciously crafted web content may lead to an unexpected process crash.",Apple,"Safari,iOS And iPad OS,Watch OS,Mac OS,Visionos,TV OS",4.3,MEDIUM,0.0011500000255182385,false,,false,false,false,,,false,false,,2024-07-29T22:17:08.706Z,0
CVE-2024-40789,https://securityvulnerability.io/vulnerability/CVE-2024-40789,Safari Addresses Out-of-Bounds Access Issue,"An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, Safari 17.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3, macOS Sonoma 14.6. Processing maliciously crafted web content may lead to an unexpected process crash.",Apple,"Safari,iOS And iPad OS,Watch OS,Mac OS,Visionos,TV OS",6.5,MEDIUM,0.0013899999903514981,false,,false,false,false,,,false,false,,2024-07-29T22:16:57.905Z,0