High severity8.6NVD Advisory· Published Sep 27, 2023· Updated Jun 17, 2026
CVE-2023-40448
CVE-2023-40448
Description
The issue was addressed with improved handling of protocols. This issue is fixed in tvOS 17, iOS 16.7 and iPadOS 16.7, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. A remote attacker may be able to break out of Web Content sandbox.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9before 17+ 1 more
- (no CPE)range: before 17
- (no CPE)range: unspecified
before Sonoma 14+ 1 more
- (no CPE)range: before Sonoma 14
- (no CPE)range: unspecified
- Range: before 16.7, before 17
before 10+ 1 more
- (no CPE)range: before 10
- (no CPE)range: unspecified
- Range: before 16.7, before 17
- Range: unspecified
Patches
Vulnerability mechanics
References
14- seclists.org/fulldisclosure/2023/Oct/10nvdMailing ListThird Party Advisory
- support.apple.com/en-us/HT213927nvdVendor Advisory
- support.apple.com/en-us/HT213936nvdVendor Advisory
- support.apple.com/en-us/HT213937nvdVendor Advisory
- support.apple.com/en-us/HT213938nvdVendor Advisory
- support.apple.com/en-us/HT213940nvdVendor Advisory
- seclists.org/fulldisclosure/2023/Oct/3nvd
- seclists.org/fulldisclosure/2023/Oct/4nvd
- seclists.org/fulldisclosure/2023/Oct/8nvd
- support.apple.com/kb/HT213927nvd
- support.apple.com/kb/HT213936nvd
- support.apple.com/kb/HT213937nvd
- support.apple.com/kb/HT213938nvd
- support.apple.com/kb/HT213940nvd
News mentions
0No linked articles in our index yet.