Medium severity5.3NVD Advisory· Published Jul 29, 2024· Updated Apr 2, 2026
CVE-2024-40794
CVE-2024-40794
Description
This issue was addressed through improved state management. This issue is fixed in Safari 17.6, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6. Private Browsing tabs may be accessed without authentication.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
45cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*range: <17.6
- (no CPE)range: <17.6
cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*range: <17.6
- (no CPE)range: <17.6
- Range: <17.6
- osv-coords38 versionspkg:rpm/opensuse/webkit2gtk3&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/webkit2gtk3&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/webkit2gtk3-soup2&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/webkit2gtk3-soup2&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/webkit2gtk4&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/webkit2gtk4&distro=openSUSE%20Leap%2015.6pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Enterprise%20Storage%207.1pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP6pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP5pkg:rpm/suse/webkit2gtk3-soup2&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/webkit2gtk3-soup2&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/webkit2gtk3-soup2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5pkg:rpm/suse/webkit2gtk3-soup2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6pkg:rpm/suse/webkit2gtk3-soup2&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/webkit2gtk3-soup2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/webkit2gtk3-soup2&distro=SUSE%20Manager%20Proxy%204.3pkg:rpm/suse/webkit2gtk3-soup2&distro=SUSE%20Manager%20Server%204.3pkg:rpm/suse/webkit2gtk4&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/webkit2gtk4&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/webkit2gtk4&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6pkg:rpm/suse/webkit2gtk4&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP5pkg:rpm/suse/webkit2gtk4&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP6pkg:rpm/suse/webkit2gtk4&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/webkit2gtk4&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4
< 2.44.3-150400.4.88.1+ 37 more
- (no CPE)range: < 2.44.3-150400.4.88.1
- (no CPE)range: < 2.44.3-150600.12.9.1
- (no CPE)range: < 2.44.3-150400.4.88.1
- (no CPE)range: < 2.44.3-150600.12.9.1
- (no CPE)range: < 2.44.3-150400.4.88.1
- (no CPE)range: < 2.44.3-150600.12.9.1
- (no CPE)range: < 2.44.3-150200.118.1
- (no CPE)range: < 2.44.3-150200.118.1
- (no CPE)range: < 2.44.3-150200.118.1
- (no CPE)range: < 2.44.3-150400.4.88.1
- (no CPE)range: < 2.44.3-150400.4.88.1
- (no CPE)range: < 2.44.3-150400.4.88.1
- (no CPE)range: < 2.44.3-150600.12.9.1
- (no CPE)range: < 2.44.3-4.12.1
- (no CPE)range: < 2.44.3-150200.118.1
- (no CPE)range: < 2.44.3-150200.118.1
- (no CPE)range: < 2.44.3-150400.4.88.1
- (no CPE)range: < 2.44.3-4.12.1
- (no CPE)range: < 2.44.3-150200.118.1
- (no CPE)range: < 2.44.3-150200.118.1
- (no CPE)range: < 2.44.3-150400.4.88.1
- (no CPE)range: < 2.44.3-4.12.1
- (no CPE)range: < 2.44.3-4.12.1
- (no CPE)range: < 2.44.3-150400.4.88.1
- (no CPE)range: < 2.44.3-150400.4.88.1
- (no CPE)range: < 2.44.3-150400.4.88.1
- (no CPE)range: < 2.44.3-150600.12.9.1
- (no CPE)range: < 2.44.3-150400.4.88.1
- (no CPE)range: < 2.44.3-150400.4.88.1
- (no CPE)range: < 2.44.3-150400.4.88.1
- (no CPE)range: < 2.44.3-150400.4.88.1
- (no CPE)range: < 2.44.3-150400.4.88.1
- (no CPE)range: < 2.44.3-150400.4.88.1
- (no CPE)range: < 2.44.3-150600.12.9.1
- (no CPE)range: < 2.44.3-150400.4.88.1
- (no CPE)range: < 2.44.3-150600.12.9.1
- (no CPE)range: < 2.44.3-150400.4.88.1
- (no CPE)range: < 2.44.3-150400.4.88.1
Patches
Vulnerability mechanics
References
13- seclists.org/fulldisclosure/2024/Jul/15nvdMailing ListThird Party Advisory
- seclists.org/fulldisclosure/2024/Jul/16nvdMailing ListThird Party Advisory
- seclists.org/fulldisclosure/2024/Jul/18nvdMailing ListThird Party Advisory
- support.apple.com/en-us/HT214117nvdRelease NotesVendor Advisory
- support.apple.com/en-us/HT214119nvdRelease NotesVendor Advisory
- support.apple.com/en-us/HT214121nvdRelease NotesVendor Advisory
- lists.debian.org/debian-lts-announce/2024/09/msg00006.htmlnvd
- support.apple.com/en-us/120909nvd
- support.apple.com/en-us/120911nvd
- support.apple.com/en-us/120913nvd
- support.apple.com/kb/HT214117nvd
- support.apple.com/kb/HT214119nvd
- support.apple.com/kb/HT214121nvd
News mentions
0No linked articles in our index yet.