Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2026-28859

Опубликовано: 25 мар. 2026
Источник: nvd
CVSS3: 4.3
EPSS Низкий

Описание

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.4, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, tvOS 26.4, visionOS 26.4, watchOS 26.4. A malicious website may be able to process restricted web content outside the sandbox.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
Версия до 26.4 (исключая)
cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
Версия до 26.4 (исключая)
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
Версия до 26.4 (исключая)
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
Версия до 26.4 (исключая)
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*
Версия до 26.4 (исключая)
cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:*
Версия до 26.4 (исключая)
cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*
Версия до 26.4 (исключая)

EPSS

Процентиль: 35%
0.00436
Низкий

4.3 Medium

CVSS3

Дефекты

CWE-125

Связанные уязвимости

ubuntu логотип

CVE-2026-28859

CVSS3: 4.3
ubuntu
3 месяца назад

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.4, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, tvOS 26.4, visionOS 26.4, watchOS 26.4. A malicious website may be able to process restricted web content outside the sandbox.

redhat логотип

CVE-2026-28859

CVSS3: 8.8
redhat
3 месяца назад

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.4, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, tvOS 26.4, visionOS 26.4, watchOS 26.4. A malicious website may be able to process restricted web content outside the sandbox.

debian логотип

CVE-2026-28859

CVSS3: 4.3
debian
3 месяца назад

The issue was addressed with improved memory handling. This issue is f ...

github логотип

GHSA-q74v-rxg6-m2w6

CVSS3: 4.3
github
3 месяца назад

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.4, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, tvOS 26.4, visionOS 26.4, watchOS 26.4. A malicious website may be able to process restricted web content outside the sandbox.

suse-cvrf логотип

SUSE-SU-2026:1648-1

suse-cvrf
около 2 месяцев назад

Security update for webkit2gtk3

EPSS

Процентиль: 35%
0.00436
Низкий

4.3 Medium

CVSS3

Дефекты

CWE-125