cvedb.io
CVE-2024-44206
CRITICAL · CVSS 9.3
EPSS exploitation probability: 0%
Published 2024-10-24T17:15:16.620 · Last modified 2026-06-17T07:52:32.257

Summary

An issue in the handling of URL protocols was addressed with improved logic. This issue is fixed in Safari 17.6, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, tvOS 17.6, visionOS 1.3, watchOS 10.6. A user may be able to bypass some web content restrictions.

Affected products

apple — safari

Does this affect you?

Add your gear to cvedb and we'll alert you only when apple ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.