Renwax23

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 18.7.2 iPadOS versions prior to 18.7.2 **Description** Visiting a malicious website may lead to address bar spoofing due to inadequate checks. **Recommendations** Update to iOS version 18.7.2 or later. Update to iPadOS version 18.7.2 or later.

**Name of the Vulnerable Software and Affected Versions** Apple Safari versions prior to 26.1 Apple watchOS versions prior to 26.1 Apple iPadOS versions prior to 26.1 Apple iOS versions prior to 26.1 Apple visionOS versions prior to 26.1 **Description** An inconsistent user interface issue existed due to improper state management. Visiting a malicious website could potentially lead to user interface spoofing. **Recommendations** Update Apple Safari to version 26.1. Update Apple watchOS to version 26.1. Update Apple iPadOS to version 26.1. Update Apple iOS to version 26.1. Update Apple visionOS to version 26.1.

**Name of the Vulnerable Software and Affected Versions** Safari versions prior to 26.0 macOS Tahoe versions prior to 26.0 **Description** Visiting a malicious website may lead to address bar spoofing. **Recommendations** Update Safari to version 26.0. Update macOS Tahoe to version 26.0.

**Name of the Vulnerable Software and Affected Versions** Safari versions prior to 18.4 iOS versions prior to 18.4 iPadOS versions prior to 18.4 visionOS versions prior to 2.4 macOS Sequoia versions prior to 15.4 **Description** The issue allows a website to bypass Same Origin Policy. This was addressed through improved state management. **Recommendations** For Safari versions prior to 18.4, update to Safari 18.4 or later. For iOS versions prior to 18.4, update to iOS 18.4 or later. For iPadOS versions prior to 18.4, update to iPadOS 18.4 or later. For visionOS versions prior to 2.4, update to visionOS 2.4 or later. For macOS Sequoia versions prior to 15.4, update to macOS Sequoia 15.4 or later.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 15.3 Safari versions prior to 18.3 iOS versions prior to 18.3 iPadOS versions prior to 18.3 visionOS versions prior to 2.3 **Description** The issue is related to an incorrect restriction of visualizable layers in the user interface component of the affected operating systems and browser. Visiting a malicious website may lead to user interface spoofing, potentially allowing a remote attacker to gain unauthorized access to confidential data. **Recommendations** For macOS versions prior to 15.3, update to macOS Sequoia 15.3. For Safari versions prior to 18.3, update to Safari 18.3. For iOS versions prior to 18.3, update to iOS 18.3. For iPadOS versions prior to 18.3, update to iPadOS 18.3. For visionOS versions prior to 2.3, update to visionOS 2.3. As a temporary workaround, consider avoiding visits to untrusted websites to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** macOS Sequoia versions prior to 15.3 Safari versions prior to 18.3 iOS versions prior to 18.3 iPadOS versions prior to 18.3 **Description** Visiting a malicious website may lead to address bar spoofing. The issue was addressed by adding additional logic. **Recommendations** For macOS Sequoia versions prior to 15.3, update to macOS Sequoia 15.3 to resolve the issue. For Safari versions prior to 18.3, update to Safari 18.3 to resolve the issue. For iOS versions prior to 18.3, update to iOS 18.3 to resolve the issue. For iPadOS versions prior to 18.3, update to iPadOS 18.3 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Google Chrome for iOS versions prior to 147.0.7727.55 **Description** An incorrect security user interface issue in the Omnibox (the browser's address bar) allows a remote attacker to spoof the contents of the URL bar. This is achieved by using a specially crafted domain name, specifically utilizing two Right-to-Left (RTL) Arabic character subdomains to mislead the user. **Recommendations** Update Google Chrome for iOS to version 147.0.7727.55 or later.

**Name of the Vulnerable Software and Affected Versions** Querybook versions prior to 3.14.2 **Description** The issue concerns Querybook, an open source data querying UI. In affected versions, user-provided data is not escaped in the error field of the auth callback URL in `querybook/server/app/auth/oauth auth.py` and `querybook/server/app/auth/okta auth.py`. This may allow attackers to perform reflected cross-site scripting (XSS) if Content Security Policy (CSP) is not enabled or `unsafe-inline` is allowed. **Recommendations** For versions prior to 3.14.2, upgrade to the latest, patched version of Querybook (version 3.14.2 or greater). For users unable to upgrade, enable Content Security Policy (CSP) and do not allow `unsafe-inline`, or manually escape query parameters in a reverse proxy.