CVE-2023-40451
CVE-2023-40451
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 1.0%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
26 Sep 2023Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
This issue was addressed with improved iframe sandbox enforcement. This issue is fixed in Safari 17. An attacker with JavaScript execution may be able to execute arbitrary code.
Affected products
Apple · SafariWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →