Unrated severityNVD Advisory· Published Aug 4, 2009· Updated Apr 23, 2026

CVE-2009-2198

Description

Apple GarageBand before 5.1 reconfigures Safari to accept all cookies regardless of domain name, which makes it easier for remote web servers to track users.

Affected products

Apple Inc./Garageband5 versions
cpe:2.3:a:apple:garageband:*:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:apple:garageband:*:*:*:*:*:*:*:*range: <=5.0.2
- cpe:2.3:a:apple:garageband:4.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:garageband:4.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:apple:garageband:5.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:garageband:5.0.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

lists.apple.com/archives/security-announce/2009/Aug/msg00000.htmlnvdPatchVendor Advisory
www.securityfocus.com/bid/35926nvdPatch
www.vupen.com/english/advisories/2009/2141nvdPatchVendor Advisory
secunia.com/advisories/36114nvdVendor Advisory
support.apple.com/kb/HT3732nvdVendor Advisory
osvdb.org/56738nvd
www.securitytracker.com/idnvd
exchange.xforce.ibmcloud.com/vulnerabilities/52248nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000