This issue was addressed with improved iframe sandbox enforcement. This issue is fixed in Safari 17. An attacker with JavaScript execution may be able to execute arbitrary code.
History

Wed, 20 Nov 2024 19:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published: 2023-09-26T20:14:38.617Z

Updated: 2024-11-20T18:34:05.685Z

Reserved: 2023-08-14T20:26:36.268Z

Link: CVE-2023-40451

cve-icon Vulnrichment

Updated: 2024-08-29T13:17:26.800Z

cve-icon NVD

Status : Modified

Published: 2023-09-27T15:19:17.090

Modified: 2024-11-21T08:19:29.647

Link: CVE-2023-40451

cve-icon Redhat

Severity : Moderate

Publid Date: 2023-09-28T00:00:00Z

Links: CVE-2023-40451 - Bugzilla