CRITICAL🇵🇱 Wersja polska

CVE-2025-43526

CVSS 9.8v3.1pub. 2025-12-17upd. 2026-04-02

This issue was addressed with improved URL validation. This issue is fixed in Safari 26.2, macOS Tahoe 26.2. On a Mac with Lockdown Mode enabled, web content opened via a file URL may be able to use Web APIs that should be restricted.

🤖 AI Analysis
How it works

The problem stems from insufficient URL validation. When web content is opened via file URL (file:// scheme) on a Mac with Lockdown Mode enabled, the mechanisms restricting access to specific Web APIs are not properly enforced. An attacker can thus gain access to browser functions that should be unavailable in this protected system operating mode.

Impact

An attacker can gain access to restricted Web APIs in the Lockdown Mode context, which potentially leads to breach of confidentiality, integrity, and availability of data — which reflects the maximum CVSS score of 9.8 (C:H/I:H/A:H).

Mitigation & patch

The system should be updated to Safari 26.2 and macOS Tahoe 26.2, in which the issue was resolved through improved URL validation. Details available at: https://support.apple.com/en-us/125886 and https://support.apple.com/en-us/125892.

Who is affected

Apple Safari versions before 26.2 and macOS Tahoe versions before 26.2, on Mac devices with Lockdown Mode enabled.

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Apple macOS

    OS
    Apple
    < 26.2
  • Apple Safari

    APP
    Apple
    < 26.2
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2025-10585CRITICAL9.8⚠ KEVPL ✓ten sam produkt

Type confusion w V8 (Google Chrome) — zdalne uszkodzenie sterty

CVE-2025-43300CRITICAL10.0⚠ KEVPL ✓ten sam produkt

Apple iOS/iPadOS/macOS — out-of-bounds write przy przetwarzaniu obrazu

CVE-2025-31201CRITICAL9.8⚠ KEVPL ✓ten sam produkt

Apple: Obejście Pointer Authentication w iOS, macOS i innych platformach

CVE-2025-31200CRITICAL9.8⚠ KEVPL ✓ten sam produkt

Apple — memory corruption (RCE) w przetwarzaniu strumieni audio

CVE-2025-24201CRITICAL10.0⚠ KEVPL ✓ten sam produkt

Apple WebKit: out-of-bounds write umożliwiający ucieczkę z sandbox przeglądarki