Lucene search
AppleVULNRICHMENT:CVE-2024-44187HistorySep 16, 2024 - 11:23 p.m.
CVE-2024-44187
2024-09-1623:23:16
apple
github.com
cross-origin
apple
safari
macos
ios
ipados
tvos
watchos
security origin
exfiltrate data
AI Score
5.8
Confidence
Low
EPSS
0.001
Percentile
31.3%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
A cross-origin issue existed with “iframe” elements. This was addressed with improved tracking of security origins. This issue is fixed in Safari 18, visionOS 2, watchOS 11, macOS Sequoia 15, iOS 18 and iPadOS 18, tvOS 18. A malicious website may exfiltrate data cross-origin.
Related
cvelist
cvelist
CVE-2024-44187
2024-09-16 23:23:16
debiancve
debiancve
CVE-2024-44187
2024-09-17 00:15:52
nvd
nvd
CVE-2024-44187
2024-09-17 00:15:52
osv
osv
CVE-2024-44187
2024-09-17 00:15:52
cve
cve
CVE-2024-44187
2024-09-17 00:15:52
openvas
openvas
Apple Safari Security Update (HT121241)
2024-09-20 00:00:00
nessus
nessus
Apple TV < 18 Multiple Vulnerabilities (121248)
2024-09-24 00:00:00
AI Score
5.8
Confidence
Low
EPSS
0.001
Percentile
31.3%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2024-44187