Medium severity6.5NVD Advisory· Published Oct 28, 2024· Updated Apr 2, 2026
CVE-2024-44155
CVE-2024-44155
Description
A custom URL scheme handling issue was addressed with improved input validation. This issue is fixed in Safari 18, iOS 17.7.1 and iPadOS 17.7.1, iOS 18 and iPadOS 18, macOS Sequoia 15, watchOS 11. Maliciously crafted web content may violate iframe sandboxing policy.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*range: <18.0
- (no CPE)range: <18
Patches
Vulnerability mechanics
References
6- support.apple.com/en-us/121238nvdRelease NotesVendor Advisory
- support.apple.com/en-us/121240nvdRelease NotesVendor Advisory
- support.apple.com/en-us/121241nvdRelease NotesVendor Advisory
- support.apple.com/en-us/121250nvdRelease NotesVendor Advisory
- support.apple.com/en-us/121567nvdRelease NotesVendor Advisory
- seclists.org/fulldisclosure/2024/Oct/10nvd
News mentions
0No linked articles in our index yet.