CVE-2025-43327

Description

The issue was addressed by adding additional logic. This issue is fixed in Safari 26, macOS Tahoe 26. Visiting a malicious website may lead to address bar spoofing.

CVSS 3.1 Score

Weakness

• CWE-451

References

• Apple Security Advisory
• NVD Entry
• https://support.apple.com/en-us/125113 (Release Notes, Vendor Advisory)
• http://seclists.org/fulldisclosure/2025/Sep/53
• http://seclists.org/fulldisclosure/2025/Sep/59