CVE-2025-31277HIGH 8.8CISA KEVEPSS p69.5%
CVE-2025-31277Apple Multiple Products Buffer Overflow Vulnerability
Apple / Multiple Products
Description
Apple Safari, iOS, watchOS, visionOS, iPadOS, macOS, and tvOS contain a buffer overflow vulnerability that could allow the processing of maliciously crafted web content which may lead to memory corruption.
Scoring
| CVSS 3.1 | 8.8 (HIGH) |
| Vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
| EPSS | 1.43% probability of exploitation · percentile 69.5% · 2026-06-18T12:00:27Z |
| Published | 2025-07-30 |
| Last modified | 2026-04-03 |
CISA KEV entry
Added to KEV: 2026-03-20
Underlying weaknesses· 1
References
- https://support.apple.com/en-us/124147
- https://support.apple.com/en-us/124149
- https://support.apple.com/en-us/124152
- https://support.apple.com/en-us/124153
- https://support.apple.com/en-us/124154
- https://support.apple.com/en-us/124155
- http://seclists.org/fulldisclosure/2025/Aug/0
- http://seclists.org/fulldisclosure/2025/Jul/30
1
| Type | Target | Confidence | Tier |
|---|---|---|---|
| Weakness | Improper Restriction of Operations within the Bounds of a Memory Buffercwe-119 | 0% | live |
(incoming)1
| Type | Target | Confidence | Tier |
|---|---|---|---|
| KEVEntry | Apple Multiple Products Buffer Overflow Vulnerabilitykev-cve-2025-31277 | 0% | live |
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.