CVE-2024-27850
published 2024-06-10CVE-2024-27850: This issue was addressed with improvements to the noise injection algorithm. This issue is fixed in Safari 17.5, iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5…
medium6.5CVSS 3.1
AVNACLPRNUIRSUCNIHAN
This issue was addressed with improvements to the noise injection algorithm. This issue is fixed in Safari 17.5, iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, visionOS 1.2. A maliciously crafted webpage may be able to fingerprint the user.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios_17.5_and_ipados | — | — |
| apple | ios_and_ipados | < 17.5 | 17.5 |
| apple | ipados | < 17.5 | 17.5 |
| apple | iphone_os | < 17.5 | 17.5 |
| apple | macos | < 14.5 | 14.5 |
| apple | macos | >= 14.0 < 14.5 | 14.5 |
| apple | macos_sonoma | — | — |
| apple | safari | < 17.5 | 17.5 |
| apple | safari | — | — |
| apple | visionos | < 1.2 | 1.2 |
| apple | visionos | — | — |
CVSS provenance
nvdv3.16.5MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
osv6.5MEDIUM