A logic issue was addressed with improved checks. This issue is fixed in iOS 17.3 and iPadOS 17.3, Safari 17.3, tvOS 17.3, macOS Sonoma 14.3, watchOS 10.3. A malicious website may cause unexpected cross-origin behavior.
History

Thu, 12 Dec 2024 15:00:00 +0000

Type Values Removed Values Added
First Time appeared Apple ipados
CPEs cpe:2.3:o:apple:ipad_os:*:*:*:*:*:*:*:* cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
Vendors & Products Apple ipad Os
Apple ipados

Tue, 10 Dec 2024 18:15:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple ipad Os
Apple iphone Os
Apple macos
Apple safari
Apple tvos
Apple watchos
Weaknesses NVD-CWE-noinfo
CPEs cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:ipad_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*
Vendors & Products Apple
Apple ipad Os
Apple iphone Os
Apple macos
Apple safari
Apple tvos
Apple watchos
Metrics cvssV3_1

{'score': 7.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L'}

cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N'}


Sat, 16 Nov 2024 02:45:00 +0000

Type Values Removed Values Added
CPEs cpe:/a:redhat:enterprise_linux:8

Thu, 17 Oct 2024 02:30:00 +0000

Type Values Removed Values Added
First Time appeared Redhat
Redhat enterprise Linux
CPEs cpe:/a:redhat:enterprise_linux:9
Vendors & Products Redhat
Redhat enterprise Linux

Thu, 26 Sep 2024 02:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-942
References

Wed, 25 Sep 2024 17:15:00 +0000

Type Values Removed Values Added
Title webkitgtk: A malicious website may cause unexpected cross-origin behavior
References
Metrics threat_severity

None

threat_severity

Moderate


cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published: 2024-04-24T16:43:43.625Z

Updated: 2024-08-01T22:59:32.112Z

Reserved: 2024-01-12T22:22:21.498Z

Link: CVE-2024-23271

cve-icon Vulnrichment

Updated: 2024-08-01T22:59:32.112Z

cve-icon NVD

Status : Analyzed

Published: 2024-04-24T17:15:47.127

Modified: 2024-12-12T14:33:00.640

Link: CVE-2024-23271

cve-icon Redhat

Severity : Moderate

Publid Date: 2024-09-25T00:00:00Z

Links: CVE-2024-23271 - Bugzilla