CVE-2023-40385
published 2024-01-10CVE-2023-40385: This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sonoma 14, Safari 17, iOS 17 and iPadOS 17. A remote attacker may be…
medium6.5CVSS 3.1
AVNACLPRNUIRSUCHINAN
This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sonoma 14, Safari 17, iOS 17 and iPadOS 17. A remote attacker may be able to view leaked DNS queries with Private Relay turned on.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios_17_and_ipados | — | — |
| apple | ios_and_ipados | >= unspecified < 17 | 17 |
| apple | ipados | < 17.0 | 17.0 |
| apple | iphone_os | < 17.0 | 17.0 |
| apple | macos | < 14.0 | 14.0 |
| apple | macos | >= unspecified < 14 | 14 |
| apple | macos_sonoma | — | — |
| apple | safari | < 17.0 | 17.0 |
| apple | safari | — | — |
| apple | safari | >= unspecified < 17 | 17 |