Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistAppleCVELIST:CVE-2024-44187
HistorySep 16, 2024 - 11:23 p.m.

CVE-2024-44187

2024-09-1623:23:16
apple
www.cve.org
2
cross-origin issue
safari 18
visionos 2
watchos 11
macos sequoia 15
ios 18
ipados 18
tvos 18
security origins
malicious website
data exfiltration

EPSS

0.001

Percentile

31.3%

JSON

A cross-origin issue existed with “iframe” elements. This was addressed with improved tracking of security origins. This issue is fixed in Safari 18, visionOS 2, watchOS 11, macOS Sequoia 15, iOS 18 and iPadOS 18, tvOS 18. A malicious website may exfiltrate data cross-origin.

CNA Affected

[
  {
    "vendor": "Apple",
    "product": "macOS",
    "versions": [
      {
        "version": "unspecified",
        "status": "affected",
        "lessThan": "15",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "Apple",
    "product": "tvOS",
    "versions": [
      {
        "version": "unspecified",
        "status": "affected",
        "lessThan": "18",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "Apple",
    "product": "visionOS",
    "versions": [
      {
        "version": "unspecified",
        "status": "affected",
        "lessThan": "2",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "Apple",
    "product": "iOS and iPadOS",
    "versions": [
      {
        "version": "unspecified",
        "status": "affected",
        "lessThan": "18",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "Apple",
    "product": "watchOS",
    "versions": [
      {
        "version": "unspecified",
        "status": "affected",
        "lessThan": "11",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "Apple",
    "product": "Safari",
    "versions": [
      {
        "version": "unspecified",
        "status": "affected",
        "lessThan": "18",
        "versionType": "custom"
      }
    ]
  }
]

Related

osv 1
nvd 1
debiancve 1
cve 1
vulnrichment 1
openvas 1
nessus 1
osv
osv
CVE-2024-44187
2024-09-17 00:15:52
nvd
nvd
CVE-2024-44187
2024-09-17 00:15:52
debiancve
debiancve
CVE-2024-44187
2024-09-17 00:15:52
cve
cve
CVE-2024-44187
2024-09-17 00:15:52
vulnrichment
vulnrichment
CVE-2024-44187
2024-09-16 23:23:16
openvas
openvas
Apple Safari Security Update (HT121241)
2024-09-20 00:00:00
nessus
nessus
Apple TV < 18 Multiple Vulnerabilities (121248)
2024-09-24 00:00:00

EPSS

0.001

Percentile

31.3%

JSON
Related for CVELIST:CVE-2024-44187
osv1nvd1debiancve1cve1vulnrichment1openvas1nessus1