CVE-2025-24213

webkitgtk: A type confusion issue could lead to memory corruption

Description

This issue was addressed with improved handling of floats. This issue is fixed in Safari 18.5, iOS 18.5 and iPadOS 18.5, iPadOS 17.7.7, macOS Sequoia 15.5, tvOS 18.5, visionOS 2.5, watchOS 11.5. A type confusion issue could lead to memory corruption.

INFO

Published Date :

2025-03-31T22:23:48.296Z

Last Modified :

2026-04-02T18:22:16.158Z

Source :

apple

AFFECTED PRODUCTS

The following products are affected by CVE-2025-24213 vulnerability.

Vendors	Products
Apple	Ipados Iphone Os Macos Safari Tvos
Redhat	Rhel Els

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-24213.

URL	Resource
http://seclists.org/fulldisclosure/2025/Apr/11
http://seclists.org/fulldisclosure/2025/Apr/13
http://seclists.org/fulldisclosure/2025/Apr/2
http://seclists.org/fulldisclosure/2025/Apr/4
http://seclists.org/fulldisclosure/2025/Apr/5
http://seclists.org/fulldisclosure/2025/Apr/8
http://seclists.org/fulldisclosure/2025/May/10
http://seclists.org/fulldisclosure/2025/May/11
http://seclists.org/fulldisclosure/2025/May/13
http://seclists.org/fulldisclosure/2025/May/6
http://seclists.org/fulldisclosure/2025/May/7
https://lists.debian.org/debian-lts-announce/2025/06/msg00016.html
https://nvd.nist.gov/vuln/detail/CVE-2025-24213
https://support.apple.com/en-us/122404
https://support.apple.com/en-us/122405
https://support.apple.com/en-us/122716
https://support.apple.com/en-us/122719
https://support.apple.com/en-us/122720
https://support.apple.com/en-us/122721
https://support.apple.com/en-us/122722
https://webkitgtk.org/security/WSA-2025-0003.html
https://www.cve.org/CVERecord?id=CVE-2025-24213

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact