← volver
CVE-2024-23211

CVE-2024-23211

CVSS 3.3 LOWEPSS 0.4%CWE-359
Vexday Risk Score
8Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 3.3EPSS 0.4%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
23 ene 2024Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
A privacy issue was addressed with improved handling of user preferences. This issue is fixed in Safari 17.3, iOS 16.7.5 and iPadOS 16.7.5, iOS 17.3 and iPadOS 17.3, macOS Sonoma 14.3, watchOS 10.3. A user's private browsing activity may be visible in Settings.
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
Productos afectados
Apple · iOS and iPadOSApple · macOSApple · SafariApple · watchOS

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://seclists.org/fulldisclosure/2024/Jan/27http://seclists.org/fulldisclosure/2024/Jan/33http://seclists.org/fulldisclosure/2024/Jan/34http://seclists.org/fulldisclosure/2024/Jan/36http://seclists.org/fulldisclosure/2024/Jan/39https://support.apple.com/en-us/120304https://support.apple.com/en-us/120306https://support.apple.com/en-us/120309https://support.apple.com/en-us/120310https://support.apple.com/en-us/120339https://support.apple.com/en-us/HT214056https://support.apple.com/en-us/HT214059