9.3

CVE-2024-44206

An issue in the handling of URL protocols was addressed with improved logic. This issue is fixed in tvOS 17.6, visionOS 1.3, Safari 17.6, watchOS 10.6, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6. A user may be able to bypass some web content restrictions.

Data is provided by the National Vulnerability Database (NVD)
AppleSafari Version < 17.6
AppleiPadOS Version < 17.6
AppleiPhone OS Version < 17.6
ApplemacOS Version < 14.6
AppletvOS Version < 17.6
ApplevisionOS Version < 1.3
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.42% 0.613
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 9.3 3.9 4.7
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
134c704f-9b21-4f2e-91b3-4a467353bcc0 5.4 2.8 2.5
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
https://support.apple.com/en-us/120915
Vendor Advisory
Release Notes
https://support.apple.com/en-us/120911
Vendor Advisory
Release Notes
https://support.apple.com/en-us/120909
Vendor Advisory
Release Notes
https://support.apple.com/en-us/120913
Vendor Advisory
Release Notes
https://support.apple.com/en-us/120914
Vendor Advisory
Release Notes
https://support.apple.com/en-us/120916
Vendor Advisory
Release Notes