CVE-2024-44296
CVSS Score
5.4
EPSS Score
0.0%
EPSS Percentile
0th
The issue was addressed with improved checks. This issue is fixed in Safari 18.1, iOS 17.7.1 and iPadOS 17.7.1, iOS 18.1 and iPadOS 18.1, macOS Sequoia 15.1, tvOS 18.1, visionOS 2.1, watchOS 11.1. Processing maliciously crafted web content may prevent Content Security Policy from being enforced.
| Vendor | apple |
| Product | safari |
| Ecosystems | |
| Industries | Technology |
| Published | Oct 28, 2024 |
| Last Updated | Apr 2, 2026 |
Stay Ahead of the Next One
Get instant alerts for apple safari
Be the first to know when new medium vulnerabilities affecting apple safari are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
Apple / Safari
0 < 18.1
Apple / iOS and iPadOS
0 < 17.7.1 0 < 18.1
Apple / macOS
0 < 15.1
Apple / tvOS
0 < 18.1
Apple / visionOS
0 < 2.1
Apple / watchOS
0 < 11.1
References
support.apple.com: https://support.apple.com/en-us/121563 support.apple.com: https://support.apple.com/en-us/121564 support.apple.com: https://support.apple.com/en-us/121565 support.apple.com: https://support.apple.com/en-us/121566 support.apple.com: https://support.apple.com/en-us/121567 support.apple.com: https://support.apple.com/en-us/121569 support.apple.com: https://support.apple.com/en-us/121571 lists.debian.org: https://lists.debian.org/debian-lts-announce/2024/11/msg00019.html seclists.org: http://seclists.org/fulldisclosure/2024/Oct/19 seclists.org: http://seclists.org/fulldisclosure/2024/Oct/16 seclists.org: http://seclists.org/fulldisclosure/2024/Oct/11 seclists.org: http://seclists.org/fulldisclosure/2024/Oct/9