PT-2024-31119 · Apple+9 · Visionos+16
Narendra Bhati
·
Published
2024-10-28
·
Updated
2025-11-25
·
CVE-2024-44296
CVSS v2.0
6.4
Medium
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Apple iOS versions prior to 18.1
Apple iOS versions prior to 17.7.1
Apple iPadOS versions prior to 18.1
Apple iPadOS versions prior to 17.7.1
Apple tvOS versions prior to 18.1
Apple watchOS versions prior to 11.1
Apple visionOS versions prior to 2.1
Apple macOS Sequoia versions prior to 15.1
Apple Safari versions prior to 18.1
Description
The issue was addressed with improved checks. Processing maliciously crafted web content may prevent Content Security Policy from being enforced.
Recommendations
For Apple iOS versions prior to 18.1, update to iOS 18.1 or later.
For Apple iOS versions prior to 17.7.1, update to iOS 17.7.1 or later.
For Apple iPadOS versions prior to 18.1, update to iPadOS 18.1 or later.
For Apple iPadOS versions prior to 17.7.1, update to iPadOS 17.7.1 or later.
For Apple tvOS versions prior to 18.1, update to tvOS 18.1 or later.
For Apple watchOS versions prior to 11.1, update to watchOS 11.1 or later.
For Apple visionOS versions prior to 2.1, update to visionOS 2.1 or later.
For Apple macOS Sequoia versions prior to 15.1, update to macOS Sequoia 15.1 or later.
For Apple Safari versions prior to 18.1, update to Safari 18.1 or later.
Fix
Improperly Implemented Security Check for Standard
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Almalinux
Astra Linux
Centos
Debian
Linuxmint
Apple Macos
Red Hat
Rocky Linux
Safari
Suse
Ubuntu
Ios
Ipados
Macos Sequoia
Tvos
Visionos
Watchos