Safari
CVE-2025-43531
LOW
Severity by source
AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L
Lifecycle Timeline
2DescriptionCVE.org
A race condition was addressed with improved state handling. This issue is fixed in Safari 26.2, iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, tvOS 26.2, visionOS 26.2, watchOS 26.2. Processing maliciously crafted web content may lead to an unexpected process crash.
AnalysisAI
Safari and Apple operating systems contain a race condition that crashes the rendering process when processing maliciously crafted web content, affecting Safari 26.2 and earlier, iOS 18.7.3 and earlier, iPadOS 18.7.3 and earlier, macOS Tahoe 26.2 and earlier, tvOS 26.2 and earlier, visionOS 26.2 and earlier, and watchOS 26.2 and earlier. The vulnerability requires user interaction (clicking a malicious link or visiting a hostile website) and has high attack complexity, resulting in denial of service through process crash rather than data compromise. No public exploit code has been identified, EPSS exploitation probability is very low at 0.12%, and Apple has released patched versions across all affected platforms.
Technical ContextAI
This vulnerability is a race condition (CWE-362) in the WebKit rendering engine that underpins Safari and embedded web functionality across Apple's operating systems. Race conditions occur when concurrent processes access shared state without proper synchronization, leading to unpredictable behavior depending on execution timing. In this case, the race condition occurs during web content processing and results in an unexpected process crash, suggesting improper state management during asynchronous operations or multi-threaded rendering. The fix involved implementing improved state handling mechanisms to eliminate the timing-dependent window where the race condition could manifest. The wide cross-platform impact (Safari, iOS, iPadOS, macOS, tvOS, visionOS, watchOS) indicates the vulnerability exists in shared WebKit code used across Apple's entire ecosystem.
RemediationAI
Update to Safari 26.2 or later, iOS 18.7.3 or later (or iOS 26.2 if available), iPadOS 18.7.3 or later (or iPadOS 26.2 if available), macOS Tahoe 26.2 or later, tvOS 26.2 or later, visionOS 26.2 or later, and watchOS 26.2 or later. Patches are available across all affected platforms. Users should enable automatic updates in Settings > General > Software Update (iOS/iPadOS/tvOS/watchOS) or System Settings > General > Software Update (macOS/visionOS) to receive security updates automatically. No workarounds are available for this race condition vulnerability; patching is required. Apple security advisories at https://support.apple.com/en-us/125884 through https://support.apple.com/en-us/125892 contain detailed patch information for each platform.
An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploi
Heap-based buffer overflow in Apple Safari 7.0.2 allows remote attackers to execute arbitrary code and bypass a sandbox
A use-after-free issue was addressed with improved memory management. Rated high severity (CVSS 8.8), this vulnerability
WebKit in Apple iOS before 9.3.3, Safari before 9.1.2, and tvOS before 9.2.2 allows remote attackers to execute arbitrar
The history implementation in WebKit, as used in Apple Safari before 6.2.6, 7.x before 7.1.6, and 8.x before 8.0.6, allo
WebKit, as used in Apple iOS before 8.3 and Apple Safari before 6.2.5, 7.x before 7.1.5, and 8.x before 8.0.5, does not
An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploi
An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploi
An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploi
An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploi
An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploi
An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploi
Same weakness CWE-362 – Race Condition
View allSame technique Race Condition
View allShare
External POC / Exploit Code
Leaving vuln.today