CVE-2024-23284

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-23284

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-23284.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2024-23284

Downstream

DEBIAN-CVE-2024-23284

DSA-5684-1

RHSA-2024:10481

RHSA-2024:8180

RHSA-2025:10364

SUSE-SU-2024:1269-1

SUSE-SU-2024:1270-1

SUSE-SU-2024:1293-1

SUSE-SU-2024:1944-1

SUSE-SU-2024:1976-1

UBUNTU-CVE-2024-23284

USN-6732-1

Related

Published

2024-03-08T02:15:49Z

Modified

2025-08-09T20:01:26Z

Severity

6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N CVSS Calculator

Summary

[none]

Details

A logic issue was addressed with improved state management. This issue is fixed in tvOS 17.4, macOS Sonoma 14.4, visionOS 1.1, iOS 17.4 and iPadOS 17.4, watchOS 10.4, iOS 16.7.6 and iPadOS 16.7.6, Safari 17.4. Processing maliciously crafted web content may prevent Content Security Policy from being enforced.

References

Affected packages