Home > Vulnerability Database > CVE-2025-24158

Mend.io Vulnerability Database

CVE-2025-24158

Date: January 27, 2025

The issue was addressed with improved memory handling. This issue is fixed in visionOS 2.3, Safari 18.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. Processing web content may lead to a denial-of-service.

Severity Score

6.5

Related Resources (8)

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-24158

Url: https://support.apple.com/en-us/122066

Url: https://support.apple.com/en-us/122068

Url: https://support.apple.com/en-us/122074

Url: https://support.apple.com/en-us/122073

Url: https://support.apple.com/en-us/122072

Url: https://support.apple.com/en-us/122071

Url: https://www.mend.io/vulnerability-database/CVE-2025-24158

Severity Score

6.5

Weakness Type (CWE)

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CWE-79

Allocation of Resources Without Limits or Throttling

CWE-770

CVSS v3.1

Base Score:	6.5
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	REQUIRED
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2025-24158

Date: January 27, 2025

Severity Score

Related Resources (8)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?