Description
This issue was addressed with improved handling of floats. This issue is fixed in Safari 18.5, iOS 18.5 and iPadOS 18.5, iPadOS 17.7.7, macOS Sequoia 15.5, tvOS 18.5, visionOS 2.5, watchOS 11.5. A type confusion issue could lead to memory corruption.
Published: 2025-03-31
Score: 7.8 High
EPSS: < 1% Very Low
KEV: No
Impact: Memory corruption
Action: Patch immediately
AI Analysis

Impact

This vulnerability arises from a type confusion bug in WebKitGTK that allows an attacker to write beyond intended bounds, leading to uncontrolled memory corruption. The CVSS score of 7.8 indicates that a successful exploitation could compromise system integrity, potentially allowing arbitrary code execution through corrupted memory areas. The flaw is identified as CWE-843, a type‑checking error that can be triggered by malformed input processed by WebKit.

Affected Systems

Affected Apple products include Safari (18.5 and later), iOS (18.5), iPadOS (both 18.5 and 17.7.7), macOS Sequoia 15.5, tvOS 18.5, visionOS 2.5, and watchOS 11.5. The advisory also lists cpe:/o:redhat:rhel_els:7, but no fix release has been published for that platform. Administrators should verify that all devices are running at least the minimum patched version for each platform.

Risk and Exploitability

Risk assessment shows a moderate severity CVSS of 7.8 combined with an EPSS of less than 1%, implying that few attacks are expected at this time. The vulnerability is not yet listed in CISA KEV, suggesting no known active exploits. Attackers would most likely target the vulnerability remotely through malicious web content or a compromised application that embeds WebKit, though the exact vector is not formally documented. Prompt patching reduces the likelihood that memory corruption can be leveraged for remote code execution.

Generated by OpenCVE AI on April 28, 2026 at 02:39 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade all affected Apple products to the specified patched releases (Safari 18.5+, iOS 18.5, iPadOS 18.5/17.7.7, macOS Sequoia 15.5, tvOS 18.5, visionOS 2.5, watchOS 11.5).
  • If upgrading immediately is not possible, restrict or sandbox all WebKit‑enabled applications or disable web content that could trigger the exploit.
  • Monitor system logs and crash reports for signs of memory corruption or unexpected terminations, and investigate any related anomalous activity.

Generated by OpenCVE AI on April 28, 2026 at 02:39 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DLA Debian DLA DLA-4218-1 webkit2gtk security update
Debian DSA Debian DSA DSA-5899-1 webkit2gtk security update
EUVD EUVD EUVD-2025-8974 This issue was addressed with improved handling of floats. This issue is fixed in tvOS 18.4, Safari 18.4, iPadOS 17.7.6, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. A type confusion issue could lead to memory corruption.
Ubuntu USN Ubuntu USN USN-7436-1 WebKitGTK vulnerabilities
History

Thu, 02 Apr 2026 20:30:00 +0000

Type Values Removed Values Added
Description This issue was addressed with improved handling of floats. This issue is fixed in tvOS 18.5, Safari 18.5, iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, watchOS 11.5, visionOS 2.5. A type confusion issue could lead to memory corruption. This issue was addressed with improved handling of floats. This issue is fixed in Safari 18.5, iOS 18.5 and iPadOS 18.5, iPadOS 17.7.7, macOS Sequoia 15.5, tvOS 18.5, visionOS 2.5, watchOS 11.5. A type confusion issue could lead to memory corruption.

Mon, 03 Nov 2025 21:30:00 +0000

Type Values Removed Values Added
References

Mon, 03 Nov 2025 20:30:00 +0000

Type Values Removed Values Added
References

Mon, 07 Jul 2025 15:00:00 +0000

Type Values Removed Values Added
First Time appeared Redhat
Redhat rhel Els
CPEs cpe:/o:redhat:rhel_els:7
Vendors & Products Redhat
Redhat rhel Els

Tue, 13 May 2025 17:45:00 +0000

Type Values Removed Values Added
References

Tue, 13 May 2025 16:45:00 +0000

Type Values Removed Values Added
Description This issue was addressed with improved handling of floats. This issue is fixed in tvOS 18.4, Safari 18.4, iPadOS 17.7.6, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. A type confusion issue could lead to memory corruption. This issue was addressed with improved handling of floats. This issue is fixed in tvOS 18.5, Safari 18.5, iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, watchOS 11.5, visionOS 2.5. A type confusion issue could lead to memory corruption.
References

Tue, 08 Apr 2025 02:00:00 +0000

Type Values Removed Values Added
Title webkitgtk: A type confusion issue could lead to memory corruption
References
Metrics threat_severity

None

 threat_severity

Important

Mon, 07 Apr 2025 14:45:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple ipados
Apple iphone Os
Apple macos
Apple safari
Apple tvos
CPEs cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*
Vendors & Products Apple
Apple ipados
Apple iphone Os
Apple macos
Apple safari
Apple tvos

Thu, 03 Apr 2025 18:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-843
Metrics cvssV3_1

{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Mon, 31 Mar 2025 22:45:00 +0000

Type Values Removed Values Added
Description This issue was addressed with improved handling of floats. This issue is fixed in tvOS 18.4, Safari 18.4, iPadOS 17.7.6, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. A type confusion issue could lead to memory corruption.
References

Subscriptions

Apple Ipados Iphone Os Macos Safari Tvos
Redhat Rhel Els
cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2026-04-02T18:22:16.158Z

Reserved: 2025-01-17T00:00:45.002Z

Link: CVE-2025-24213

cve-icon Vulnrichment

Updated: 2025-11-03T21:08:40.157Z

cve-icon NVD

Status : Modified

Published: 2025-03-31T23:15:19.300

Modified: 2026-04-02T19:19:20.177

Link: CVE-2025-24213

cve-icon Redhat

Severity : Important

Publid Date: 2025-04-07T00:00:00Z

Links: CVE-2025-24213 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T02:45:11Z

Weaknesses