Medium severity4.3NVD Advisory· Published Jan 27, 2025· Updated Jun 17, 2026
CVE-2025-24128
CVE-2025-24128
Description
The issue was addressed by adding additional logic. This issue is fixed in Safari 18.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3. Visiting a malicious website may lead to address bar spoofing.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
8cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*range: <18.3
- (no CPE)range: = 18.3
cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*range: <18.3
- (no CPE)range: = 18.3
- Range: = 15.3
- Range: = 18.3
Patches
Vulnerability mechanics
References
6- support.apple.com/en-us/122066nvdRelease NotesVendor Advisory
- support.apple.com/en-us/122068nvdRelease NotesVendor Advisory
- support.apple.com/en-us/122074nvdRelease NotesVendor Advisory
- seclists.org/fulldisclosure/2025/Jan/13nvd
- seclists.org/fulldisclosure/2025/Jan/15nvd
- seclists.org/fulldisclosure/2025/Jan/20nvd
News mentions
0No linked articles in our index yet.