CVE-2024-23273

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Mar 8, 2024

Updated: Mar 14, 2024

Summary

CVE-2024-23273 is a vulnerability affecting Safari, iOS, and iPadOS. It involves improved state management issues that were recently addressed. In this vulnerability, Private Browsing tabs could be accessed without proper authentication in Safari 17.3 and earlier, iOS 17.3 and earlier, and iPadOS 17.3 and earlier. The latest updates to these operating systems, including Safari 17.4, iOS 17.4, and iPadOS 17.4, as well as macOS Sonoma 14.4, have resolved this issue to prevent unauthorized access to Private Browsing tabs.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uIDTUA
https://www.cve.org/CVERecord?id=CVE-2024-23273
https://nvd.nist.gov/vuln/detail/CVE-2024-23273

Back to Vulnerability Database

CVE-2024-23273

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations