CVE-2023-40417

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Sep 27, 2023

Updated: Oct 12, 2023

Summary

CVE-2023-40417 is a newly identified window management issue that has been addressed in Safari 17, iOS 17, iPadOS 17, watchOS 10, and macOS Sonoma 14. Malicious websites that frame content can exploit this vulnerability, leading to UI spoofing. Users are advised to be cautious when visiting unfamiliar websites to avoid potential risks. The flaw has been rectified with improved state management.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sWE5Oz
https://www.cve.org/CVERecord?id=CVE-2023-40417
https://nvd.nist.gov/vuln/detail/CVE-2023-40417

Back to Vulnerability Database

CVE-2023-40417

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations