AI description
CVE-2025-46298 is a vulnerability that was addressed by Apple through improvements in memory handling. This flaw could lead to an unexpected process crash when maliciously crafted web content is processed. The issue has been resolved in tvOS 26.2, Safari 26.2, watchOS 26.2, visionOS 26.2, iOS 26.2, iPadOS 26.2, and macOS Tahoe 26.2.
- Description
- The issue was addressed with improved memory handling. This issue is fixed in tvOS 26.2, Safari 26.2, watchOS 26.2, visionOS 26.2, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2. Processing maliciously crafted web content may lead to an unexpected process crash.
- Source
- product-security@apple.com
- NVD status
- Analyzed
- Products
- safari, ipados, iphone_os, macos, tvos, visionos, watchos
CVSS 3.1
- Type
- Secondary
- Base score
- 6.5
- Impact score
- 3.6
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
- Severity
- MEDIUM
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-119
- Hype score
- Not currently trending
[ZDI-26-057|CVE-2025-46298] Apple Safari JavaScriptCore FTL New Array Materialization Type Confusion Remote Code Execution Vulnerability (CVSS 8.8; Credit: @hosselot of TrendAI ZDI) https://t.co/OcWQ3q87uA
@TheZDIBugs
12 Feb 2026
1360 Impressions
4 Retweets
12 Likes
5 Bookmarks
9 Replies
0 Quotes
[ZDI-26-057|CVE-2025-46298] Apple Safari JavaScriptCore FTL New Array Materialization Type Confusion Remote Code Execution Vulnerability (CVSS 8.8; Credit: @hosselot of TrendAI ZDI) https://t.co/OcWQ3q87uA
@TheZDIBugs
4 Feb 2026
3276 Impressions
5 Retweets
20 Likes
13 Bookmarks
1 Reply
0 Quotes
CVE-2025-46298 WebKit Memory Corruption Vulnerability in Apple Platforms Leading to Unexpected Process Crash https://t.co/8WL0X6mQGJ
@VulmonFeeds
10 Jan 2026
54 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
We have just added an important vulnerability affecting Apple tvOS and other products (CVE-2025-46298) https://t.co/ZHxPLisCFz
@vuldb
9 Jan 2026
73 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-46298 The issue was addressed with improved memory handling. This issue is fixed in tvOS 26.2, Safari 26.2, watchOS 26.2, visionOS 26.2, iOS 26.2 and iPadOS 26.2, macOS Tah… https://t.co/mVst6eN8x4
@CVEnew
9 Jan 2026
213 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3ECBF838-536C-47F9-9876-C526B8ED32EC",
"versionEndExcluding": "26.2"
},
{
"criteria": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EA029506-5678-444B-93B5-27DAD643A1C0",
"versionEndExcluding": "26.2"
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6276FDCA-3407-4FDD-8437-B57C98A97084",
"versionEndExcluding": "26.2"
},
{
"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FBA92B6D-E36C-432B-A041-94D81427CD75",
"versionEndExcluding": "26.2"
},
{
"criteria": "cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E0BBFB45-21F3-4B72-8DB1-BE72AFE0D2AB",
"versionEndExcluding": "26.2"
},
{
"criteria": "cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EB10D901-4800-4DF9-AB35-48017C178161",
"versionEndExcluding": "26.2"
},
{
"criteria": "cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "15574823-ECE0-4394-99BC-6AFA34E599CC",
"versionEndExcluding": "26.2"
}
],
"operator": "OR"
}
]
}
]