Lucene search
AppleCVELIST:CVE-2023-40385HistoryJan 10, 2024 - 10:03 p.m.
CVE-2023-40385
2024-01-1022:03:31
apple
www.cve.org
8
vulnerable code
macos sonoma 14
safari 17
ios 17
ipados 17
remote attacker
dns queries
private relay
This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sonoma 14, Safari 17, iOS 17 and iPadOS 17. A remote attacker may be able to view leaked DNS queries with Private Relay turned on.
CNA Affected
[
{
"vendor": "Apple",
"product": "iOS and iPadOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "17",
"versionType": "custom"
}
]
},
{
"vendor": "Apple",
"product": "Safari",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "17",
"versionType": "custom"
}
]
},
{
"vendor": "Apple",
"product": "macOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "14",
"versionType": "custom"
}
]
}
]Related
vulnrichment
vulnrichment
CVE-2023-40385
2024-01-10 22:03:31
nvd
nvd
CVE-2023-40385
2024-01-10 22:15:48
cve
cve
CVE-2023-40385
2024-01-10 22:15:48
prion
prion
Code injection
2024-01-10 22:15:00
openvas
openvas
Apple Safari Security Update (HT213941)
2023-10-27 00:00:00
Apple Mac OS X Security Update (HT213940)
2023-10-27 00:00:00
apple
apple
About the security content of Safari 17
2023-09-26 00:00:00
About the security content of iOS 17 and iPadOS 17
2023-09-18 00:00:00
About the security content of macOS Sonoma 14
2023-09-26 00:00:00