CVE-2023-40417
published 2023-09-27CVE-2023-40417: A window management issue was addressed with improved state management. This issue is fixed in Safari 17, iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14…
medium5.4CVSS 3.1
AVNACLPRNUIRSUCLILAN
A window management issue was addressed with improved state management. This issue is fixed in Safari 17, iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. Visiting a website that frames malicious content may lead to UI spoofing.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios_17_and_ipados | — | — |
| apple | ios_and_ipados | >= unspecified < 17 | 17 |
| apple | ipados | < 17.0 | 17.0 |
| apple | iphone_os | < 17.0 | 17.0 |
| apple | macos | < 14.0 | 14.0 |
| apple | macos | >= unspecified < 14 | 14 |
| apple | macos_sonoma | — | — |
| apple | safari | < 17.0 | 17.0 |
| apple | safari | — | — |
| apple | safari | >= unspecified < 17 | 17 |
| apple | watchos | < 10.0 | 10.0 |
| apple | watchos | — | — |
| apple | watchos | >= unspecified < 10 | 10 |