CVE-2025-24143

EUVD-2025-3650
The issue was addressed with improved access restrictions to the file system. This issue is fixed in Safari 18.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, visionOS 2.3. A maliciously crafted webpage may be able to fingerprint the user.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.5 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 36%
Affected Products (NVD)
VendorProductVersion
applesafari
𝑥
< 18.3
appleipados
𝑥
< 18.3
applemacos
𝑥
< 15.3
applevisionos
𝑥
< 2.3
𝑥
= Vulnerable software versions
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
libjavascriptcoregtk-4_0-18
suse enterprise desktop 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise desktop 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise server 12 SP3
2.46.6-4.28.1
fixed
suse enterprise server 12 SP5
2.46.6-4.28.1
fixed
suse enterprise server 15 SP2
2.46.6-150200.133.1
fixed
suse enterprise server 15 SP3
2.46.6-150200.133.1
fixed
suse enterprise server 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP7
2.46.6-150600.12.27.1
fixed
libjavascriptcoregtk-4_1-0
suse enterprise desktop 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise desktop 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP7
2.46.6-150600.12.27.1
fixed
libjavascriptcoregtk-6_0-1
suse enterprise desktop 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise desktop 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP7
2.46.6-150600.12.27.1
fixed
libwebkit2gtk-4_0-37
suse enterprise desktop 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise desktop 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise server 12 SP3
2.46.6-4.28.1
fixed
suse enterprise server 12 SP5
2.46.6-4.28.1
fixed
suse enterprise server 15 SP2
2.46.6-150200.133.1
fixed
suse enterprise server 15 SP3
2.46.6-150200.133.1
fixed
suse enterprise server 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP7
2.46.6-150600.12.27.1
fixed
libwebkit2gtk-4_1-0
suse enterprise desktop 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise desktop 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP7
2.46.6-150600.12.27.1
fixed
libwebkit2gtk3-lang
suse enterprise server 12 SP3
2.46.6-4.28.1
fixed
suse enterprise server 12 SP5
2.46.6-4.28.1
fixed
suse enterprise server 15 SP2
2.46.6-150200.133.1
fixed
suse enterprise server 15 SP3
2.46.6-150200.133.1
fixed
libwebkitgtk-6_0-4
suse enterprise desktop 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise desktop 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP7
2.46.6-150600.12.27.1
fixed
typelib-1_0-JavaScriptCore-4_0
suse enterprise desktop 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise desktop 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise server 12 SP3
2.46.6-4.28.1
fixed
suse enterprise server 12 SP5
2.46.6-4.28.1
fixed
suse enterprise server 15 SP2
2.46.6-150200.133.1
fixed
suse enterprise server 15 SP3
2.46.6-150200.133.1
fixed
suse enterprise server 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP7
2.46.6-150600.12.27.1
fixed
typelib-1_0-JavaScriptCore-4_1
suse enterprise desktop 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise desktop 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP7
2.46.6-150600.12.27.1
fixed
typelib-1_0-JavaScriptCore-6_0
suse enterprise desktop 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise desktop 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP7
2.46.6-150600.12.27.1
fixed
typelib-1_0-WebKit-6_0
suse enterprise desktop 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise desktop 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP7
2.46.6-150600.12.27.1
fixed
typelib-1_0-WebKit2-4_0
suse enterprise desktop 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise desktop 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise server 12 SP3
2.46.6-4.28.1
fixed
suse enterprise server 12 SP5
2.46.6-4.28.1
fixed
suse enterprise server 15 SP2
2.46.6-150200.133.1
fixed
suse enterprise server 15 SP3
2.46.6-150200.133.1
fixed
suse enterprise server 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP7
2.46.6-150600.12.27.1
fixed
typelib-1_0-WebKit2-4_1
suse enterprise desktop 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise desktop 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP7
2.46.6-150600.12.27.1
fixed
typelib-1_0-WebKit2WebExtension-4_0
suse enterprise desktop 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise desktop 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise server 12 SP3
2.46.6-4.28.1
fixed
suse enterprise server 12 SP5
2.46.6-4.28.1
fixed
suse enterprise server 15 SP2
2.46.6-150200.133.1
fixed
suse enterprise server 15 SP3
2.46.6-150200.133.1
fixed
suse enterprise server 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP7
2.46.6-150600.12.27.1
fixed
typelib-1_0-WebKit2WebExtension-4_1
suse enterprise desktop 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise desktop 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP7
2.46.6-150600.12.27.1
fixed
typelib-1_0-WebKitWebProcessExtension-6_0
suse enterprise desktop 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise desktop 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP7
2.46.6-150600.12.27.1
fixed
webkit2gtk-4_0-injected-bundles
suse enterprise desktop 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise desktop 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise server 12 SP3
2.46.6-4.28.1
fixed
suse enterprise server 12 SP5
2.46.6-4.28.1
fixed
suse enterprise server 15 SP2
2.46.6-150200.133.1
fixed
suse enterprise server 15 SP3
2.46.6-150200.133.1
fixed
suse enterprise server 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP7
2.46.6-150600.12.27.1
fixed
webkit2gtk-4_1-injected-bundles
suse enterprise desktop 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise desktop 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP7
2.46.6-150600.12.27.1
fixed
webkit2gtk3-devel
suse enterprise desktop 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise desktop 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise server 12 SP5
2.46.6-4.28.1
fixed
suse enterprise server 15 SP2
2.46.6-150200.133.1
fixed
suse enterprise server 15 SP3
2.46.6-150200.133.1
fixed
suse enterprise server 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP7
2.46.6-150600.12.27.1
fixed
webkit2gtk3-soup2-devel
suse enterprise desktop 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise desktop 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP7
2.46.6-150600.12.27.1
fixed
webkit2gtk4-devel
suse enterprise desktop 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise desktop 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP7
2.46.6-150600.12.27.1
fixed
webkitgtk-6_0-injected-bundles
suse enterprise desktop 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise desktop 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise sap 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise sap 15 SP7
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP4
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP5
2.46.6-150400.4.106.1
fixed
suse enterprise server 15 SP6
2.46.6-150600.12.27.1
fixed
suse enterprise server 15 SP7
2.46.6-150600.12.27.1
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
webkit2gtk3
RHEL 8
0:2.46.6-1.el8_10
fixed
webkit2gtk3-devel
RHEL 8
0:2.46.6-1.el8_10
fixed
webkit2gtk3-jsc
RHEL 8
0:2.46.6-1.el8_10
fixed
webkit2gtk3-jsc-devel
RHEL 8
0:2.46.6-1.el8_10
fixed
Common Weakness Enumeration
References
https://support.apple.com/en-us/122066
https://support.apple.com/en-us/122068
https://support.apple.com/en-us/122073
https://support.apple.com/en-us/122074
http://seclists.org/fulldisclosure/2025/Jan/13
http://seclists.org/fulldisclosure/2025/Jan/15
http://seclists.org/fulldisclosure/2025/Jan/20
https://lists.debian.org/debian-lts-announce/2025/02/msg00014.html