An injection issue was addressed with improved validation. This issue is fixed in Safari 17.4, macOS Sonoma 14.4, iOS 17.4 and iPadOS 17.4, watchOS 10.4, tvOS 17.4. A maliciously crafted webpage may be able to fingerprint the user.
Metrics
Affected Vendors & Products
References
History
Sat, 07 Dec 2024 03:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Apple ipad Os
Apple iphone Os Fedoraproject Fedoraproject fedora Webkitgtk Webkitgtk webkitgtk Wpewebkit Wpewebkit wpe Webkit |
|
Weaknesses | CWE-74 | |
CPEs | cpe:2.3:a:webkitgtk:webkitgtk:*:*:*:*:*:*:*:* cpe:2.3:a:wpewebkit:wpe_webkit:*:*:*:*:*:*:*:* cpe:2.3:o:apple:ipad_os:*:*:*:*:*:*:*:* cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:40:*:*:*:*:*:*:* |
|
Vendors & Products |
Apple ipad Os
Apple iphone Os Fedoraproject Fedoraproject fedora Webkitgtk Webkitgtk webkitgtk Wpewebkit Wpewebkit wpe Webkit |
Thu, 31 Oct 2024 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Apple
Apple ios Apple ipados Apple macos Apple safari Apple tvos Apple watchos |
|
CPEs | cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:* cpe:2.3:o:apple:ios:*:*:*:*:*:*:*:* cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:* |
|
Vendors & Products |
Apple
Apple ios Apple ipados Apple macos Apple safari Apple tvos Apple watchos |
|
Metrics |
cvssV3_1
|
ssvc
|
MITRE
Status: PUBLISHED
Assigner: apple
Published: 2024-03-08T01:36:14.625Z
Updated: 2024-10-31T16:45:41.969Z
Reserved: 2024-01-12T22:22:21.499Z
Link: CVE-2024-23280
Vulnrichment
Updated: 2024-08-01T22:59:32.150Z
NVD
Status : Analyzed
Published: 2024-03-08T02:15:49.740
Modified: 2024-12-07T03:11:21.283
Link: CVE-2024-23280
Redhat