An injection issue was addressed with improved validation. This issue is fixed in Safari 17.4, macOS Sonoma 14.4, iOS 17.4 and iPadOS 17.4, watchOS 10.4, tvOS 17.4. A maliciously crafted webpage may be able to fingerprint the user.
Metrics
Affected Vendors & Products
References
History
Thu, 31 Oct 2024 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Apple
Apple ios Apple ipados Apple macos Apple safari Apple tvos Apple watchos |
|
CPEs | cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:* cpe:2.3:o:apple:ios:*:*:*:*:*:*:*:* cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:* |
|
Vendors & Products |
Apple
Apple ios Apple ipados Apple macos Apple safari Apple tvos Apple watchos |
|
Metrics |
cvssV3_1
|
ssvc
|
MITRE
Status: PUBLISHED
Assigner: apple
Published: 2024-03-08T01:36:14.625Z
Updated: 2024-10-31T16:45:41.969Z
Reserved: 2024-01-12T22:22:21.499Z
Link: CVE-2024-23280
Vulnrichment
Updated: 2024-08-01T22:59:32.150Z
NVD
Status : Awaiting Analysis
Published: 2024-03-08T02:15:49.740
Modified: 2024-11-21T08:57:23.487
Link: CVE-2024-23280
Redhat