This issue was addressed with improved iframe sandbox enforcement. This issue is fixed in Safari 17. An attacker with JavaScript execution may be able to execute arbitrary code.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: apple
Published: 2023-09-26T20:14:38.617Z
Updated: 2024-08-29T13:17:26.800Z
Reserved: 2023-08-14T20:26:36.268Z
Link: CVE-2023-40451
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-09-27T15:19:17.090
Modified: 2024-01-31T15:15:09.977
Link: CVE-2023-40451
Redhat