Medium severity6.5NVD Advisory· Published Mar 8, 2024· Updated Apr 2, 2026
CVE-2024-23254
CVE-2024-23254
Description
The issue was addressed with improved UI handling. This issue is fixed in Safari 17.4, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, visionOS 1.1, watchOS 10.4. A malicious website may exfiltrate audio data cross-origin.
Affected products
10- cpe:2.3:o:fedoraproject:fedora:40:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
23- support.apple.com/en-us/HT214081nvdVendor Advisory
- support.apple.com/en-us/HT214084nvdVendor Advisory
- support.apple.com/en-us/HT214086nvdVendor Advisory
- support.apple.com/en-us/HT214087nvdVendor Advisory
- support.apple.com/en-us/HT214088nvdVendor Advisory
- support.apple.com/en-us/HT214089nvdVendor Advisory
- seclists.org/fulldisclosure/2024/Mar/20nvdMailing List
- seclists.org/fulldisclosure/2024/Mar/21nvdMailing List
- seclists.org/fulldisclosure/2024/Mar/24nvdMailing List
- seclists.org/fulldisclosure/2024/Mar/25nvdMailing List
- seclists.org/fulldisclosure/2024/Mar/26nvdMailing List
- www.openwall.com/lists/oss-security/2024/03/26/1nvdMailing List
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IXLXIOAH5S7J22LJTCIAVFVVJ4TESAX4/nvdMailing List
- support.apple.com/en-us/120881nvd
- support.apple.com/en-us/120882nvd
- support.apple.com/en-us/120883nvd
- support.apple.com/en-us/120893nvd
- support.apple.com/en-us/120894nvd
- support.apple.com/en-us/120895nvd
- support.apple.com/kb/HT214081nvd
- support.apple.com/kb/HT214084nvd
- support.apple.com/kb/HT214087nvd
- support.apple.com/kb/HT214089nvd
News mentions
0No linked articles in our index yet.