An information leakage was addressed with additional validation. This issue is fixed in visionOS 2.1, iOS 18.1 and iPadOS 18.1, macOS Sequoia 15.1, Safari 18.1. Private browsing may leak some browsing history.

Metrics

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00274.

Exploitation none

Automatable yes

Technical Impact partial

Affected Vendors & Products

Vendors Products
Apple
  • Ios
  • Ipados
  • Iphone Os
  • Macos
  • Safari
  • Visionos

Configuration 1 [-]

OR cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:*

No data.

No data.

Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References
Link Providers
http://seclists.org/fulldisclosure/2024/Oct/11 cve-icon
http://seclists.org/fulldisclosure/2024/Oct/19 cve-icon
http://seclists.org/fulldisclosure/2024/Oct/9 cve-icon
https://support.apple.com/en-us/121563 cve-icon cve-icon
https://support.apple.com/en-us/121564 cve-icon cve-icon
https://support.apple.com/en-us/121566 cve-icon cve-icon
https://support.apple.com/en-us/121571 cve-icon cve-icon
History

Mon, 03 Nov 2025 22:30:00 +0000

Type Values Removed Values Added
References

Mon, 14 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.00093}

 epss

{'score': 0.00119}

Wed, 30 Oct 2024 20:15:00 +0000

Type Values Removed Values Added
First Time appeared Apple ios
Apple macos
Apple safari
CPEs cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:ios:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
Vendors & Products Apple ios
Apple macos
Apple safari
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 29 Oct 2024 23:00:00 +0000

Type Values Removed Values Added
Description An information leakage was addressed with additional validation. This issue is fixed in visionOS 2.1, iOS 18.1 and iPadOS 18.1. Private browsing may leak some browsing history. An information leakage was addressed with additional validation. This issue is fixed in visionOS 2.1, iOS 18.1 and iPadOS 18.1, macOS Sequoia 15.1, Safari 18.1. Private browsing may leak some browsing history.
References

Tue, 29 Oct 2024 21:00:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple ipados
Apple iphone Os
Apple visionos
Weaknesses NVD-CWE-noinfo
CPEs cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:*
Vendors & Products Apple
Apple ipados
Apple iphone Os
Apple visionos
Metrics cvssV3_1

{'score': 5.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N'}

Mon, 28 Oct 2024 21:15:00 +0000

Type Values Removed Values Added
Description An information leakage was addressed with additional validation. This issue is fixed in visionOS 2.1, iOS 18.1 and iPadOS 18.1. Private browsing may leak some browsing history.
References
cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2025-11-03T22:08:57.406Z

Reserved: 2024-08-20T21:45:40.784Z

Link: CVE-2024-44229

cve-icon Vulnrichment

Updated: 2024-10-30T19:46:16.067Z

cve-icon NVD

Status : Modified

Published: 2024-10-28T21:15:06.417

Modified: 2025-11-03T22:18:27.387

Link: CVE-2024-44229

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.