CVE-2026-43707 – Apple Safari
“A single webpage should never be able to bring down a trusted browser.”
This update addresses 30 vulnerabilities affecting Apple Safari. CVE-2026-43715 has a CVSS score of 8.8, which is High severity, and resolves a use-after-free vulnerability that could lead to memory corruption when processing maliciously crafted web content. CVE-2026-43707 has a CVSS score of 7.5, which is High severity, and addresses a memory corruption issue that could result in an unexpected process crash.
The update also resolves CVE-2026-43716 and CVE-2026-43745, each with a CVSS score of 6.5, which is Medium severity. These vulnerabilities address memory handling and out-of-bounds write issues that could cause unexpected Safari crashes when processing malicious web content. The fixes improve memory management and input validation to strengthen browser stability and resilience against crafted content. There is no verified evidence of active real-world exploitation or a public proof-of-concept for any of these vulnerabilities.
Key Details
- Affected Product
- Apple Safari
- Attack Vector
- Network
- Attack Complexity
- Low
- Privileges Required
- None
- User Interaction
- Required
- CWE Classification
- CWE-119