Description
The issue was addressed with improved UI. This issue is fixed in Safari 18.6, iOS 18.6 and iPadOS 18.6. Visiting a malicious website may lead to address bar spoofing.
Published: 2025-07-29
Score: 4.3 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Address Bar Spoofing
Action: Update
AI Analysis

Impact

The vulnerability arises from a UI flaw that allows a malicious website to cause the browser’s address bar to display a spoofed URL, misleading the user about the true origin of the site. This misrepresentation can facilitate phishing attacks or other social‑engineering tactics, compromising user trust and potentially leading to credential theft. The weakness corresponds to CWE‑451, a defect that presents misleading information to the user. The CVSS score of 4.3 indicates a moderate impact, largely focused on the integrity of displayed information rather than giving direct control to the attacker.

Affected Systems

Apple Safari, iOS, and iPadOS are affected. The flaw is fixed in Safari 18.6, iOS 18.6, and iPadOS 18.6; earlier releases of these products remain vulnerable.

Risk and Exploitability

The EPSS score of less than 1% suggests the exploitation probability is low, and the vulnerability is not listed in CISA’s KEV catalog. Attackers would need to entice a user to visit a malicious webpage that triggers the address‑bar spoofing, making the attack vector likely browser‑based via a crafted page. Although the CVSS indicates moderate severity, the potential for user confusion warrants timely patching

Generated by OpenCVE AI on April 28, 2026 at 00:43 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest Safari 18.6, iOS 18.6, or iPadOS 18.6 update to remove the address‑bar spoofing flaw
  • Ensure automatic system updates are enabled so future security patches are installed promptly
  • Verify that the browser’s address bar accurately reflects the URL before entering credentials or interacting with sensitive forms

Generated by OpenCVE AI on April 28, 2026 at 00:43 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DLA Debian DLA DLA-4276-1 webkit2gtk security update
Debian DSA Debian DSA DSA-5978-1 webkit2gtk security update
EUVD EUVD EUVD-2025-23084 The issue was addressed with improved UI. This issue is fixed in iOS 18.6 and iPadOS 18.6, Safari 18. 6. Visiting a malicious website may lead to address bar spoofing.
Ubuntu USN Ubuntu USN USN-7702-1 WebKitGTK vulnerabilities
History

Thu, 02 Apr 2026 20:30:00 +0000

Type Values Removed Values Added
Description The issue was addressed with improved UI. This issue is fixed in iOS 18.6 and iPadOS 18.6, Safari 18. 6. Visiting a malicious website may lead to address bar spoofing. The issue was addressed with improved UI. This issue is fixed in Safari 18.6, iOS 18.6 and iPadOS 18.6. Visiting a malicious website may lead to address bar spoofing.

Tue, 04 Nov 2025 22:30:00 +0000

Type Values Removed Values Added
References

Mon, 03 Nov 2025 20:30:00 +0000

Type Values Removed Values Added
References

Mon, 03 Nov 2025 19:30:00 +0000

Type Values Removed Values Added
References

Tue, 05 Aug 2025 00:15:00 +0000

Type Values Removed Values Added
Title webkitgtk: Visiting a malicious website may lead to address bar spoofing
References
Metrics threat_severity

None

 threat_severity

Moderate

Mon, 04 Aug 2025 19:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-451

Fri, 01 Aug 2025 14:45:00 +0000

Type Values Removed Values Added
First Time appeared Apple iphone Os
Weaknesses NVD-CWE-noinfo
CPEs cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
Vendors & Products Apple iphone Os

Thu, 31 Jul 2025 10:30:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple ios
Apple ipados
Apple safari
Vendors & Products Apple
Apple ios
Apple ipados
Apple safari

Wed, 30 Jul 2025 23:00:00 +0000

Type Values Removed Values Added
Description The issue was addressed with improved UI. This issue is fixed in iOS 18.6 and iPadOS 18.6. Visiting a malicious website may lead to address bar spoofing. The issue was addressed with improved UI. This issue is fixed in iOS 18.6 and iPadOS 18.6, Safari 18. 6. Visiting a malicious website may lead to address bar spoofing.
References

Wed, 30 Jul 2025 18:15:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 4.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 29 Jul 2025 23:45:00 +0000

Type Values Removed Values Added
Description The issue was addressed with improved UI. This issue is fixed in iOS 18.6 and iPadOS 18.6. Visiting a malicious website may lead to address bar spoofing.
References

Subscriptions

Apple Ios Ipados Iphone Os Safari
cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2026-04-02T18:16:48.845Z

Reserved: 2025-04-16T15:24:37.091Z

Link: CVE-2025-43228

cve-icon Vulnrichment

Updated: 2025-11-04T21:10:34.650Z

cve-icon NVD

Status : Modified

Published: 2025-07-30T00:15:34.917

Modified: 2026-04-02T19:20:09.040

Link: CVE-2025-43228

cve-icon Redhat

Severity : Moderate

Publid Date: 2025-08-01T00:00:00Z

Links: CVE-2025-43228 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T00:45:17Z

Weaknesses