Version history for TLS/SSL support in web browsers
In-game article clicks load inline without leaving the challenge.
Version history for TLS/SSL support in web browsers tracks the implementation of Transport Layer Security protocol versions in major web browsers.
| Browser or OS API | Version | Platforms | SSL protocols | TLS protocols | Certificate support | Vulnerability | Protocol selection by user | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| SSL 2.0 (insecure) | SSL 3.0 (insecure) | TLS 1.0 (deprecated) | TLS 1.1 (deprecated) | TLS 1.2 | TLS 1.3 | EV | SHA-2 | ECDSA | BEAST | CRIME | POODLE (SSLv3) | RC4 | FREAK | Logjam | |||||
| Google Chrome (Chrome for Android) | 1–9 | Windows (10+) macOS (12+) Linux Android (10+) iOS (17+) ChromeOS | Disabled by default | Yes | Yes | No | No | No | Yes (only desktop) | Requires SHA-2 compatible OS | Needs ECC compatible OS | Not affected | Vulnerable (HTTPS) | Vulnerable | Vulnerable | Vulnerable (except Windows) | Vulnerable | Yes | |
| 10–20 | No | Yes | Yes | No | No | No | Yes (only desktop) | Requires SHA-2 compatible OS | Needs ECC compatible OS | Not affected | Vulnerable (HTTPS/SPDY) | Vulnerable | Vulnerable | Vulnerable (except Windows) | Vulnerable | Yes | |||
| 21 | No | Yes | Yes | No | No | No | Yes (only desktop) | Requires SHA-2 compatible OS | Needs ECC compatible OS | Not affected | Mitigated | Vulnerable | Vulnerable | Vulnerable (except Windows) | Vulnerable | Yes | |||
| 22–29 | No | Yes | Yes | Yes | No | No | Yes (only desktop) | Requires SHA-2 compatible OS | Needs ECC compatible OS | Not affected | Mitigated | Vulnerable | Vulnerable | Vulnerable (except Windows) | Vulnerable | Temporary | |||
| 30–32 | No | Yes | Yes | Yes | Yes | No | Yes (only desktop) | Requires SHA-2 compatible OS | Needs ECC compatible OS | Not affected | Mitigated | Vulnerable | Vulnerable | Vulnerable (except Windows) | Vulnerable | Temporary | |||
| 33–37 | No | Yes | Yes | Yes | Yes | No | Yes (only desktop) | Requires SHA-2 compatible OS | Needs ECC compatible OS | Not affected | Mitigated | Partly mitigated | Lowest priority | Vulnerable (except Windows) | Vulnerable | Temporary | |||
| 38, 39 | No | Yes | Yes | Yes | Yes | No | Yes (only desktop) | Yes | Needs ECC compatible OS | Not affected | Mitigated | Partly mitigated | Lowest priority | Vulnerable (except Windows) | Vulnerable | Temporary | |||
| 40 | No | Disabled by default | Yes | Yes | Yes | No | Yes (only desktop) | Yes | Needs ECC compatible OS | Not affected | Mitigated | Mitigated | Lowest priority | Vulnerable (except Windows) | Vulnerable | Yes | |||
| 41, 42 | No | Disabled by default | Yes | Yes | Yes | No | Yes (only desktop) | Yes | Needs ECC compatible OS | Not affected | Mitigated | Mitigated | Lowest priority | Mitigated | Vulnerable | Yes | |||
| 43 | No | Disabled by default | Yes | Yes | Yes | No | Yes (only desktop) | Yes | Needs ECC compatible OS | Not affected | Mitigated | Mitigated | Only as fallback | Mitigated | Vulnerable | Yes | |||
| 44–47 | No | No | Yes | Yes | Yes | No | Yes (only desktop) | Yes | Needs ECC compatible OS | Not affected | Mitigated | Not affected | Only as fallback | Mitigated | Mitigated | Temporary | |||
| 48, 49 | No | No | Yes | Yes | Yes | No | Yes (only desktop) | Yes | Needs ECC compatible OS | Not affected | Mitigated | Not affected | Disabled by default | Mitigated | Mitigated | Temporary | |||
| 50–53 | No | No | Yes | Yes | Yes | No | Yes (only desktop) | Yes | Yes | Not affected | Mitigated | Not affected | Disabled by default | Mitigated | Mitigated | Temporary | |||
| 54–66 | No | No | Yes | Yes | Yes | Disabled by default (draft version) | Yes (only desktop) | Yes | Yes | Not affected | Mitigated | Not affected | Disabled by default | Mitigated | Mitigated | Temporary | |||
| 67–69 | No | No | Yes | Yes | Yes | Yes (draft version) | Yes (only desktop) | Yes | Yes | Not affected | Mitigated | Not affected | Disabled by default | Mitigated | Mitigated | Temporary | |||
| 70–83 | No | No | Yes | Yes | Yes | Yes | Yes (only desktop) | Yes | Yes | Not affected | Mitigated | Not affected | Disabled by default | Mitigated | Mitigated | Temporary | |||
| 84–90 | No | No | Warn by default | Warn by default | Yes | Yes | Yes (only desktop) | Yes | Yes | Not affected | Mitigated | Not affected | Disabled by default | Mitigated | Mitigated | Temporary | |||
| 91–145 | No | No | No | No | Yes | Yes | Yes (only desktop) | Yes | Yes | Not affected | Mitigated | Not affected | Disabled by default | Mitigated | Mitigated | Temporary | |||
| ESC 146 | 147 | ||||||||||||||||||
| Browser or OS API | Version | Platforms | SSL 2.0 (insecure) | SSL 3.0 (insecure) | TLS 1.0 (deprecated) | TLS 1.1 (deprecated) | TLS 1.2 | TLS 1.3 | EV certificate | SHA-2 certificate | ECDSA certificate | BEAST | CRIME | POODLE (SSLv3) | RC4 | FREAK | Logjam | Protocol selection by user | |
| Microsoft Edge (Chromium-based) OS-independent | 79–83 | Windows (10+) macOS (12+) Linux Android (10+) iOS (18+) | No | No | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Mitigated | Not affected | Not affected | Disabled by default | Mitigated | Mitigated | Yes | |
| 84–90 | No | No | Warn by default | Warn by default | Yes | Yes | Yes | Yes | Yes | Mitigated | Not affected | Not affected | Disabled by default | Mitigated | Mitigated | Yes | |||
| 91-145 | No | No | No | No | Yes | Yes | Yes | Yes | Yes | Mitigated | Not affected | Not affected | Disabled by default | Mitigated | Mitigated | Yes | |||
| ESC 146 | 147 | ||||||||||||||||||
| Browser or OS API | Version | Platforms | SSL 2.0 (insecure) | SSL 3.0 (insecure) | TLS 1.0 (deprecated) | TLS 1.1 (deprecated) | TLS 1.2 | TLS 1.3 | EV certificate | SHA-2 certificate | ECDSA certificate | BEAST | CRIME | POODLE (SSLv3) | RC4 | FREAK | Logjam | Protocol selection by user | |
| Mozilla Firefox (Firefox for mobile) | 1.0, 1.5 | Windows (10+) macOS (10.15+) Linux Android (8.0+) iOS (15+) Firefox OS Maemo ESR only for: Windows (10+) macOS (10.15+) Linux | Yes | Yes | Yes | No | No | No | No | Yes | No | Not affected | Not affected | Vulnerable | Vulnerable | Not affected | Vulnerable | Yes | |
| 2 | Disabled by default | Yes | Yes | No | No | No | No | Yes | Yes | Not affected | Not affected | Vulnerable | Vulnerable | Not affected | Vulnerable | Yes | |||
| 3–7 | Disabled by default | Yes | Yes | No | No | No | Yes | Yes | Yes | Not affected | Not affected | Vulnerable | Vulnerable | Not affected | Vulnerable | Yes | |||
| 8–10 ESR 10 | No | Yes | Yes | No | No | No | Yes | Yes | Yes | Not affected | Not affected | Vulnerable | Vulnerable | Not affected | Vulnerable | Yes | |||
| 11–14 | No | Yes | Yes | No | No | No | Yes | Yes | Yes | Not affected | Vulnerable (SPDY) | Vulnerable | Vulnerable | Not affected | Vulnerable | Yes | |||
| 15–22 ESR 17.0–17.0.10 | No | Yes | Yes | No | No | No | Yes | Yes | Yes | Not affected | Mitigated | Vulnerable | Vulnerable | Not affected | Vulnerable | Yes | |||
| ESR 17.0.11 | No | Yes | Yes | No | No | No | Yes | Yes | Yes | Not affected | Mitigated | Vulnerable | Lowest priority | Not affected | Vulnerable | Yes | |||
| 23 | No | Yes | Yes | Disabled by default | No | No | Yes | Yes | Yes | Not affected | Mitigated | Vulnerable | Vulnerable | Not affected | Vulnerable | Yes | |||
| 24, 25.0.0 ESR 24.0–24.1.0 | No | Yes | Yes | Disabled by default | Disabled by default | No | Yes | Yes | Yes | Not affected | Mitigated | Vulnerable | Vulnerable | Not affected | Vulnerable | Yes | |||
| 25.0.1, 26 ESR 24.1.1–24.8.1 | No | Yes | Yes | Disabled by default | Disabled by default | No | Yes | Yes | Yes | Not affected | Mitigated | Vulnerable | Lowest priority | Not affected | Vulnerable | Yes | |||
| 27–33 ESR 31.0–31.2.0 | No | Yes | Yes | Yes | Yes | No | Yes | Yes | Yes | Not affected | Mitigated | Vulnerable | Lowest priority | Not affected | Vulnerable | Yes | |||
| 34, 35 ESR 31.3.0–31.7.0 | No | Disabled by default | Yes | Yes | Yes | No | Yes | Yes | Yes | Not affected | Mitigated | Mitigated | Lowest priority | Not affected | Vulnerable | Yes | |||
| ESR 31.8.0 | No | Disabled by default | Yes | Yes | Yes | No | Yes | Yes | Yes | Not affected | Mitigated | Mitigated | Lowest priority | Not affected | Mitigated | Yes | |||
| 36–38 ESR 38.0–38.0.1 | No | Disabled by default | Yes | Yes | Yes | No | Yes | Yes | Yes | Not affected | Mitigated | Mitigated | Only as fallback | Not affected | Vulnerable | Yes | |||
| ESR 38.1.0–38.8.0 | No | Disabled by default | Yes | Yes | Yes | No | Yes | Yes | Yes | Not affected | Mitigated | Mitigated | Only as fallback | Not affected | Mitigated | Yes | |||
| 39–43 | No | No | Yes | Yes | Yes | No | Yes | Yes | Yes | Not affected | Mitigated | Not affected | Only as fallback | Not affected | Mitigated | Yes | |||
| 44–48 ESR 45 | No | No | Yes | Yes | Yes | No | Yes | Yes | Yes | Not affected | Mitigated | Not affected | Disabled by default | Not affected | Mitigated | Yes | |||
| 49–59 ESR 52 | No | No | Yes | Yes | Yes | Disabled by default (draft version) | Yes | Yes | Yes | Not affected | Mitigated | Not affected | Disabled by default | Not affected | Mitigated | Yes | |||
| 60–62 ESR 60 | No | No | Yes | Yes | Yes | Yes (draft version) | Yes | Yes | Yes | Not affected | Mitigated | Not affected | Disabled by default | Not affected | Mitigated | Yes | |||
| 63–77 ESR 68 | No | No | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Not affected | Mitigated | Not affected | Disabled by default | Not affected | Mitigated | Yes | |||
| 78–148 ESR 78–140.8 | No | No | Disabled by default | Disabled by default | Yes | Yes | Yes | Yes | Yes | Not affected | Mitigated | Not affected | Disabled by default | Not affected | Mitigated | Yes | |||
| ESR 140.9 | |||||||||||||||||||
| 149 | |||||||||||||||||||
| Browser or OS API | Version | Platforms | SSL 2.0 (insecure) | SSL 3.0 (insecure) | TLS 1.0 (deprecated) | TLS 1.1 (deprecated) | TLS 1.2 | TLS 1.3 | EV certificate | SHA-2 certificate | ECDSA certificate | BEAST | CRIME | POODLE (SSLv3) | RC4 | FREAK | Logjam | Protocol selection by user | |
| Microsoft Internet Explorer (1–10) Windows Schannel | 1.x | Windows 3.1, 95, NT, Mac OS 7, 8 | No SSL/TLS support | ||||||||||||||||
| 2 | Yes | No | No | No | No | No | No | No | No | No SSL 3.0 or TLS support | Vulnerable | Vulnerable | Vulnerable | —N/a | |||||
| 3 | Yes | Yes | No | No | No | No | No | No | No | Vulnerable | Not affected | Vulnerable | Vulnerable | Vulnerable | Vulnerable | ? | |||
| 4, 5, 6 | Windows 3.1, 95, 98, NT, 2000 Mac OS 7.1, 8, X, Solaris, HP-UX | Yes | Yes | Disabled by default | No | No | No | No | No | No | Vulnerable | Not affected | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Yes | ||
| 6 | Windows XP | Yes | Yes | Disabled by default | No | No | No | No | Yes (Since SP3) | No | Mitigated | Not affected | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Yes | ||
| 7, 8 | Disabled by default | Yes | Yes | No | No | No | Yes | Yes (Since SP3) | No | Mitigated | Not affected | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Yes | |||
| 6 | Server 2003 | Yes | Yes | Disabled by default | No | No | No | No | Yes (KB938397+KB968730) | No | Mitigated | Not affected | Vulnerable | Vulnerable | Mitigated | Mitigated | Yes | ||
| 7, 8 | Disabled by default | Yes | Yes | No | No | No | Yes | Yes (KB938397+KB968730) | No | Mitigated | Not affected | Vulnerable | Vulnerable | Mitigated | Mitigated | Yes | |||
| 7, 8, 9 | Windows Vista | Disabled by default | Yes | Yes | No | No | No | Yes | Yes | Yes | Mitigated | Not affected | Vulnerable | Vulnerable | Mitigated | Mitigated | Yes | ||
| 7, 8, 9 | Server 2008 | Disabled by default | Yes | Yes | Disabled by default(KB4019276) | Disabled by default(KB4019276) | No | Yes | Yes | Yes | Mitigated | Not affected | Vulnerable | Vulnerable | Mitigated | Mitigated | Yes | ||
| 8, 9, 10 | 7, 8 Server 2008 R2 Server 2012 | Disabled by default | Yes | Yes | Disabled by default | Disabled by default | No | Yes | Yes | Yes | Mitigated | Not affected | Vulnerable | Lowest priority | Mitigated | Mitigated | Yes | ||
| Internet Explorer 11 Windows Schannel | 11 | 7, 8.1 Server 2008 R2 Server 2012 Server 2012 R2 | Disabled by default | Disabled by default | Disabled by default | Disabled by default | Yes | No | Yes | Yes | Yes | Mitigated | Not affected | Mitigated | Disabled by default | Mitigated | Mitigated | Yes | |
| Browser or OS API | Version | Platforms | SSL 2.0 (insecure) | SSL 3.0 (insecure) | TLS 1.0 (deprecated) | TLS 1.1 (deprecated) | TLS 1.2 | TLS 1.3 | EV certificate | SHA-2 certificate | ECDSA certificate | BEAST | CRIME | POODLE (SSLv3) | RC4 | FREAK | Logjam | Protocol selection by user | |
| Microsoft Edge (12–18) (EdgeHTML-based) Client only Internet Explorer 11 Windows Schannel | 11 | 12–13 | Windows 10 1507–1511 | Disabled by default | Yes | Yes | Yes | Yes | No | Yes | Yes | Yes | Mitigated | Not affected | Mitigated | Disabled by default | Mitigated | Mitigated | Yes |
| 11 | 14–18 (client only) | Windows 10 1607–2004 Windows Server (SAC) 1709–2004 | No | Disabled by default | Yes | Yes | Yes | No | Yes | Yes | Yes | Mitigated | Not affected | Mitigated | Disabled by default | Mitigated | Mitigated | Yes | |
| Internet Explorer 11 Windows Schannel | 11 | Windows 10 20H2–22H2 Windows Server (SAC) 20H2 | No | Disabled by default | Disabled by default | Disabled by default | Yes | No | Yes | Yes | Yes | Mitigated | Not affected | Mitigated | Disabled by default | Mitigated | Mitigated | Yes | |
| Windows Schannel | Windows 11 21H2–22H2 (Ent/Edu/Home/Pro) | No | Disabled by default | Disabled by default | Disabled by default | Yes | Yes | Yes | Yes | Yes | Mitigated | Not affected | Mitigated | Disabled by default | Mitigated | Mitigated | Yes | ||
| Windows 11 23H2 (Home/Pro) | No | Disabled by default | Disabled by default | Disabled by default | Yes | Yes | Yes | Yes | Yes | Mitigated | Not affected | Mitigated | Disabled by default | Mitigated | Mitigated | Yes | |||
| Windows 11 23H2 (Ent/Edu) | |||||||||||||||||||
| Windows 11 24H2 (Home/Pro) | No | Disabled by default | Disabled by default | Disabled by default | Yes | Yes | Yes | Yes | Yes | Mitigated | Not affected | Mitigated | Disabled by default | Mitigated | Mitigated | Yes | |||
| Windows 11 24H2 (Ent/Edu) | |||||||||||||||||||
| Windows 11 25H2 (Ent/Edu/Home/Pro) | No | Disabled by default | Disabled by default | Disabled by default | Yes | Yes | Yes | Yes | Yes | Mitigated | Not affected | Mitigated | Disabled by default | Mitigated | Mitigated | Yes | |||
| Windows 11 26H1 (Specific ARM SoCs only) | No | Disabled by default | Disabled by default | Disabled by default | Yes | Yes | Yes | Yes | Yes | Mitigated | Not affected | Mitigated | Disabled by default | Mitigated | Mitigated | Yes | |||
| Windows 11 26H2 | No | Disabled by default | Disabled by default | Disabled by default | Yes | Yes | Yes | Yes | Yes | Mitigated | Not affected | Mitigated | Disabled by default | Mitigated | Mitigated | Yes | |||
| Internet Explorer 11 LTSB/LTSC Windows Schannel LTSB/LTSC | 11 | Windows 10 LTSB 2015 (1507) | Disabled by default | Yes | Disabled by default | Disabled by default | Yes | No | Yes | Yes | Yes | Mitigated | Not affected | Mitigated | Disabled by default | Mitigated | Mitigated | Yes | |
| Windows 10 LTSB 2016 (1607) | No | Disabled by default | Disabled by default | Disabled by default | Yes | No | Yes | Yes | Yes | Mitigated | Not affected | Mitigated | Disabled by default | Mitigated | Mitigated | Yes | |||
| Windows Server 2016 (LTSB/1607) | No | Disabled by default | Disabled by default | Disabled by default | Yes | No | Yes | Yes | Yes | Mitigated | Not affected | Mitigated | Disabled by default | Mitigated | Mitigated | Yes | |||
| Windows 10 LTSC 2019 (1809) Windows Server 2019 (LTSC/1809) | No | Disabled by default | Disabled by default | Disabled by default | Yes | No | Yes | Yes | Yes | Mitigated | Not affected | Mitigated | Disabled by default | Mitigated | Mitigated | Yes | |||
| Windows 10 LTSC 2021 (21H2) | No | Disabled by default | Disabled by default | Disabled by default | Yes | No | Yes | Yes | Yes | Mitigated | Not affected | Mitigated | Disabled by default | Mitigated | Mitigated | Yes | |||
| Windows Server 2022 (LTSC/21H2) | No | Disabled by default | Disabled by default | Disabled by default | Yes | Yes | Yes | Yes | Yes | Mitigated | Not affected | Mitigated | Disabled by default | Mitigated | Mitigated | Yes | |||
| Windows Schannel LTSC | Windows 11 LTSC 2024 (24H2) | No | Disabled by default | Disabled by default | Disabled by default | Yes | Yes | Yes | Yes | Yes | Mitigated | Not affected | Mitigated | Disabled by default | Mitigated | Mitigated | Yes | ||
| Windows Server 2025 (LTSC/24H2) | No | Disabled by default | Disabled by default | Disabled by default | Yes | Yes | Yes | Yes | Yes | Mitigated | Not affected | Mitigated | Disabled by default | Mitigated | Mitigated | Yes | |||
| Browser or OS API | Version | Platforms | SSL 2.0 (insecure) | SSL 3.0 (insecure) | TLS 1.0 (deprecated) | TLS 1.1 (deprecated) | TLS 1.2 | TLS 1.3 | EV certificate | SHA-2 certificate | ECDSA certificate | BEAST | CRIME | POODLE (SSLv3) | RC4 | FREAK | Logjam | Protocol selection by user | |
| Microsoft Internet Explorer Mobile | 7–9 | Windows Phone 7, 7.5, 7.8 | Disabled by default | Yes | Yes | No[citation needed] | No[citation needed] | No | No[citation needed] | Yes | Yes | ? | Not affected | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Only with 3rd party tools | |
| 10 | Windows Phone 8 | Disabled by default | Yes | Yes | Disabled by default | Disabled by default | No | No[citation needed] | Yes | Yes | Mitigated | Not affected | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Only with 3rd party tools | ||
| 11 | Windows Phone 8.1 | Disabled by default | Yes | Yes | Yes | Yes | No | No[citation needed] | Yes | Yes | Mitigated | Not affected | Vulnerable | Only as fallback | Vulnerable | Vulnerable | Only with 3rd party tools | ||
| Microsoft Edge (13–15) (EdgeHTML-based) | 13 | Windows 10 Mobile 1511 | Disabled by default | Disabled by default | Yes | Yes | Yes | No | Yes | Yes | Yes | Mitigated | Not affected | Mitigated | Disabled by default | Mitigated | Mitigated | No | |
| 14, 15 | Windows 10 Mobile 1607–1709 | No | Disabled by default | Yes | Yes | Yes | No | Yes | Yes | Yes | Mitigated | Not affected | Mitigated | Disabled by default | Mitigated | Mitigated | No | ||
| Browser or OS API | Version | Platforms | SSL 2.0 (insecure) | SSL 3.0 (insecure) | TLS 1.0 (deprecated) | TLS 1.1 (deprecated) | TLS 1.2 | TLS 1.3 | EV certificate | SHA-2 certificate | ECDSA certificate | BEAST | CRIME | POODLE (SSLv3) | RC4 | FREAK | Logjam | Protocol selection by user | |
| Apple Safari | 1 | Mac OS X 10.2, 10.3 | No | Yes | Yes | No | No | No | No | No | No | Vulnerable | Not affected | Vulnerable | Vulnerable | Vulnerable | Vulnerable | No | |
| 2–5 | Mac OS X 10.4, 10.5, Win XP | No | Yes | Yes | No | No | No | Yes (Since v3.2) | No | No | Vulnerable | Not affected | Vulnerable | Vulnerable | Vulnerable | Vulnerable | No | ||
| 3–5 | Vista, Win 7 | No | Yes | Yes | No | No | No | Yes (Since v3.2) | No | Yes | Vulnerable | Not affected | Vulnerable | Vulnerable | Vulnerable | Vulnerable | No | ||
| 4–6 | Mac OS X 10.6, 10.7 | No | Yes | Yes | No | No | No | Yes | Yes | Yes | Vulnerable | Not affected | Vulnerable | Vulnerable | Vulnerable | Vulnerable | No | ||
| 6 | OS X 10.8 | No | Yes | Yes | No | No | No | Yes | Yes | Yes | Mitigated | Not affected | Mitigated | Vulnerable | Mitigated | Vulnerable | No | ||
| 7, 9 | OS X 10.9 | No | Yes | Yes | Yes | Yes | No | Yes | Yes | Yes | Mitigated | Not affected | Mitigated | Vulnerable | Mitigated | Vulnerable | No | ||
| 8–10 | OS X 10.10 | No | Yes | Yes | Yes | Yes | No | Yes | Yes | Yes | Mitigated | Not affected | Mitigated | Lowest priority | Mitigated | Mitigated | No | ||
| 9–11 | OS X 10.11 | No | No | Yes | Yes | Yes | No | Yes | Yes | Yes | Mitigated | Not affected | Not affected | Lowest priority | Mitigated | Mitigated | No | ||
| 10–13 | macOS 10.12, 10.13 | No | No | Yes | Yes | Yes | No | Yes | Yes | Yes | Mitigated | Not affected | Not affected | Disabled by default | Mitigated | Mitigated | No | ||
| 12–14 | macOS 10.14 | No | No | Yes | Yes | Yes | Yes (Since macOS 10.14.4) | Yes | Yes | Yes | Mitigated | Not affected | Not affected | Disabled by default | Mitigated | Mitigated | No | ||
| 13–18 | macOS 10.15, 11, 12, 13 | No | No | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Mitigated | Not affected | Not affected | Disabled by default | Mitigated | Mitigated | No | ||
| 17–18 | 26 | macOS 14 | No | No | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Mitigated | Not affected | Not affected | Disabled by default | Mitigated | Mitigated | No | |
| 18 | 26 | macOS 15 | No | No | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Mitigated | Not affected | Not affected | Disabled by default | Mitigated | Mitigated | No | |
| 26 | macOS 26 | No | No | Disabled by default | Disabled by default | Yes | Yes | Yes | Yes | Yes | Mitigated | Not affected | Not affected | Disabled by default | Mitigated | Mitigated | No | ||
| Browser or OS API | Version | Platforms | SSL 2.0 (insecure) | SSL 3.0 (insecure) | TLS 1.0 (deprecated) | TLS 1.1 (deprecated) | TLS 1.2 | TLS 1.3 | EV certificate | SHA-2 certificate | ECDSA certificate | BEAST | CRIME | POODLE (SSLv3) | RC4 | FREAK | Logjam | Protocol selection by user | |
| Apple Safari (mobile) | 3 | iPhone OS 1, 2 | No | Yes | Yes | No | No | No | No | No | No | Vulnerable | Not affected | Vulnerable | Vulnerable | Vulnerable | Vulnerable | No | |
| 4, 5 | iPhone OS 3, iOS 4 | No | Yes | Yes | No | No | No | Yes | Yes | Yes (Since iOS 4) | Vulnerable | Not affected | Vulnerable | Vulnerable | Vulnerable | Vulnerable | No | ||
| 5, 6 | iOS 5, 6 | No | Yes | Yes | Yes | Yes | No | Yes | Yes | Yes | Vulnerable | Not affected | Vulnerable | Vulnerable | Vulnerable | Vulnerable | No | ||
| 7 | iOS 7 | No | Yes | Yes | Yes | Yes | No | Yes | Yes | Yes | Mitigated | Not affected | Vulnerable | Vulnerable | Vulnerable | Vulnerable | No | ||
| 8 | iOS 8 | No | Yes | Yes | Yes | Yes | No | Yes | Yes | Yes | Mitigated | Not affected | Mitigated | Lowest priority | Mitigated | Mitigated | No | ||
| 9 | iOS 9 | No | No | Yes | Yes | Yes | No | Yes | Yes | Yes | Mitigated | Not affected | Not affected | Lowest priority | Mitigated | Mitigated | No | ||
| 10, 11 | iOS 10, 11 | No | No | Yes | Yes | Yes | No | Yes | Yes | Yes | Mitigated | Not affected | Not affected | Disabled by default | Mitigated | Mitigated | No | ||
| 12 | iOS 12 | No | No | Yes | Yes | Yes | Yes (Since iOS 12.2) | Yes | Yes | Yes | Mitigated | Not affected | Not affected | Disabled by default | Mitigated | Mitigated | No | ||
| 13–17 | iOS 13–17 | No | No | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Mitigated | Not affected | Not affected | Disabled by default | Mitigated | Mitigated | No | ||
| iPadOS 13–17 | |||||||||||||||||||
| 18 | iOS 18 | No | No | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Mitigated | Not affected | Not affected | Disabled by default | Mitigated | Mitigated | No | ||
| iPadOS 18 | |||||||||||||||||||
| 26 | iOS 26 | No | No | Disabled by default | Disabled by default | Yes | Yes | Yes | Yes | Yes | Mitigated | Not affected | Not affected | Disabled by default | Mitigated | Mitigated | No | ||
| iPadOS 26 | |||||||||||||||||||
| Browser or OS API | Version | Platforms | SSL 2.0 (insecure) | SSL 3.0 (insecure) | TLS 1.0 (deprecated) | TLS 1.1 (deprecated) | TLS 1.2 | TLS 1.3 | EV | SHA-2 | ECDSA | BEAST | CRIME | POODLE (SSLv3) | RC4 | FREAK | Logjam | Protocol selection by user | |
| Google Android OS | Android 1.0–4.0.4 | No | Yes | Yes | No | No | No | ? | Yes | Yes (Since 3.0) | ? | ? | Vulnerable | Vulnerable | Vulnerable | Vulnerable | No | ||
| Android 4.1–4.4.4 | No | Yes | Yes | Disabled by default | Disabled by default | No | ? | Yes | Yes | ? | ? | Vulnerable | Vulnerable | Vulnerable | Vulnerable | No | |||
| Android 5.0–5.0.2 | No | Yes | Yes | Yes | Yes | No | ? | Yes | Yes | ? | ? | Vulnerable | Vulnerable | Vulnerable | Vulnerable | No | |||
| Android 5.1–5.1.1 | No | Disabled by default[citation needed] | Yes | Yes | Yes | No | ? | Yes | Yes | ? | ? | Not affected | Only as fallback | Mitigated | Mitigated | No | |||
| Android 6.0–7.1.2 | No | Disabled by default[citation needed] | Yes | Yes | Yes | No | ? | Yes | Yes | ? | ? | Not affected | Disabled by default | Mitigated | Mitigated | No | |||
| Android 8.0–9 | No | No | Yes | Yes | Yes | No | ? | Yes | Yes | ? | ? | Not affected | Disabled by default | Mitigated | Mitigated | No | |||
| Android 10–13 | No | No | Yes | Yes | Yes | Yes | ? | Yes | Yes | ? | ? | Not affected | Disabled by default | Mitigated | Mitigated | No | |||
| Android 14 | No | No | Yes | Yes | Yes | Yes | ? | Yes | Yes | ? | ? | Not affected | Disabled by default | Mitigated | Mitigated | No | |||
| Android 15 | No | No | Disabled by default | Disabled by default | Yes | Yes | ? | Yes | Yes | ? | ? | Not affected | Disabled by default | Mitigated | Mitigated | No | |||
| Android 16 | No | No | Disabled by default | Disabled by default | Yes | Yes | ? | Yes | Yes | ? | ? | Not affected | Disabled by default | Mitigated | Mitigated | No | |||
| Browser or OS API | Version | Platforms | SSL 2.0 (insecure) | SSL 3.0 (insecure) | TLS 1.0 (deprecated) | TLS 1.1 (deprecated) | TLS 1.2 | TLS 1.3 | EV certificate | SHA-2 certificate | ECDSA certificate | BEAST | CRIME | POODLE (SSLv3) | RC4 | FREAK | Logjam | Protocol selection by user |
| Color or Note | Significance | |
|---|---|---|
| Browser version | Platform | |
| Browser version | Operating system | Future release; under development |
| Browser version | Operating system | Current latest release |
| Browser version | Operating system | Former release; still supported |
| Browser version | Operating system | Former release; long-term support still active, but will end in less than 12 months |
| Browser version | Operating system | Former release; no longer supported |
| —N/a | Operating system | Mixed/Unspecified |
| Operating system (Version+) | Minimum required operating system version (for supported versions of the browser) | |
| Operating system | No longer supported for this operating system |
Notes