← voltar
CVE-2025-24143

CVE-2025-24143

CVSS 6.5 MEDIUMEPSS 0.8%CWE-862
Vexday Risk Score
13Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 6.5EPSS 0.8%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
27 jan 2025Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
The issue was addressed with improved access restrictions to the file system. This issue is fixed in Safari 18.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, visionOS 2.3. A maliciously crafted webpage may be able to fingerprint the user.
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Produtos afetados
Apple · iOS and iPadOSApple · macOSApple · SafariApple · visionOS

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://seclists.org/fulldisclosure/2025/Jan/13http://seclists.org/fulldisclosure/2025/Jan/15http://seclists.org/fulldisclosure/2025/Jan/20https://lists.debian.org/debian-lts-announce/2025/02/msg00014.htmlhttps://support.apple.com/en-us/122066https://support.apple.com/en-us/122068https://support.apple.com/en-us/122073https://support.apple.com/en-us/122074