An injection issue was addressed with improved validation. This issue is fixed in Safari 17.4, macOS Sonoma 14.4, iOS 17.4 and iPadOS 17.4, watchOS 10.4, tvOS 17.4. A maliciously crafted webpage may be able to fingerprint the user.
                
            Metrics
Affected Vendors & Products
References
        History
                    Mon, 07 Jul 2025 14:45:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| First Time appeared | Redhat rhel Els | |
| CPEs | cpe:/o:redhat:rhel_els:7 | |
| Vendors & Products | Redhat rhel Els | 
Fri, 28 Mar 2025 15:30:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| CPEs | cpe:/a:redhat:enterprise_linux:8 | 
Fri, 21 Mar 2025 02:45:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| First Time appeared | Redhat Redhat enterprise Linux | |
| CPEs | cpe:/a:redhat:enterprise_linux:9 | |
| Vendors & Products | Redhat Redhat enterprise Linux | 
Sat, 07 Dec 2024 03:30:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| First Time appeared | Apple ipad Os Apple iphone Os Fedoraproject Fedoraproject fedora Webkitgtk Webkitgtk webkitgtk Wpewebkit Wpewebkit wpe Webkit | |
| Weaknesses | CWE-74 | |
| CPEs | cpe:2.3:a:webkitgtk:webkitgtk:*:*:*:*:*:*:*:* cpe:2.3:a:wpewebkit:wpe_webkit:*:*:*:*:*:*:*:* cpe:2.3:o:apple:ipad_os:*:*:*:*:*:*:*:* cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:40:*:*:*:*:*:*:* | |
| Vendors & Products | Apple ipad Os Apple iphone Os Fedoraproject Fedoraproject fedora Webkitgtk Webkitgtk webkitgtk Wpewebkit Wpewebkit wpe Webkit | 
Thu, 31 Oct 2024 17:15:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| First Time appeared | Apple Apple ios Apple ipados Apple macos Apple safari Apple tvos Apple watchos | |
| CPEs | cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:* cpe:2.3:o:apple:ios:*:*:*:*:*:*:*:* cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:* | |
| Vendors & Products | Apple Apple ios Apple ipados Apple macos Apple safari Apple tvos Apple watchos | |
| Metrics | cvssV3_1 
 | ssvc 
 
 | 
 MITRE
                        MITRE
                    Status: PUBLISHED
Assigner: apple
Published: 2024-03-08T01:36:14.625Z
Updated: 2025-02-13T17:39:26.737Z
Reserved: 2024-01-12T22:22:21.499Z
Link: CVE-2024-23280
 Vulnrichment
                        Vulnrichment
                    Updated: 2024-08-01T22:59:32.150Z
 NVD
                        NVD
                    Status : Analyzed
Published: 2024-03-08T02:15:49.740
Modified: 2024-12-07T03:11:21.283
Link: CVE-2024-23280
 Redhat
                        Redhat