AppleVULNRICHMENT:CVE-2024-40785CVE-2024-40785
AI Score
Confidence
High
EPSS
Percentile
32.5%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
This issue was addressed with improved checks. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, Safari 17.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3, macOS Sonoma 14.6. Processing maliciously crafted web content may lead to a cross site scripting attack.
CNA Affected
[
{
"vendor": "Apple",
"product": "Safari",
"versions": [
{
"status": "affected",
"version": "unspecified",
"lessThan": "17.6",
"versionType": "custom"
}
]
},
{
"vendor": "Apple",
"product": "iOS and iPadOS",
"versions": [
{
"status": "affected",
"version": "unspecified",
"lessThan": "17.6",
"versionType": "custom"
}
]
},
{
"vendor": "Apple",
"product": "iOS and iPadOS",
"versions": [
{
"status": "affected",
"version": "unspecified",
"lessThan": "16.7",
"versionType": "custom"
}
]
},
{
"vendor": "Apple",
"product": "watchOS",
"versions": [
{
"status": "affected",
"version": "unspecified",
"lessThan": "10.6",
"versionType": "custom"
}
]
},
{
"vendor": "Apple",
"product": "macOS",
"versions": [
{
"status": "affected",
"version": "unspecified",
"lessThan": "14.6",
"versionType": "custom"
}
]
},
{
"vendor": "Apple",
"product": "visionOS",
"versions": [
{
"status": "affected",
"version": "unspecified",
"lessThan": "1.3",
"versionType": "custom"
}
]
},
{
"vendor": "Apple",
"product": "tvOS",
"versions": [
{
"status": "affected",
"version": "unspecified",
"lessThan": "17.6",
"versionType": "custom"
}
]
}
]References
seclists.org/fulldisclosure/2024/Jul/15
seclists.org/fulldisclosure/2024/Jul/16
seclists.org/fulldisclosure/2024/Jul/17
seclists.org/fulldisclosure/2024/Jul/18
seclists.org/fulldisclosure/2024/Jul/21
seclists.org/fulldisclosure/2024/Jul/22
seclists.org/fulldisclosure/2024/Jul/23
support.apple.com/en-us/HT214116
support.apple.com/en-us/HT214117
support.apple.com/en-us/HT214119
support.apple.com/en-us/HT214121
support.apple.com/en-us/HT214122
support.apple.com/en-us/HT214123
support.apple.com/en-us/HT214124
Related
AI Score
Confidence
High
EPSS
Percentile
32.5%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial