Описание
An issue existed in the parsing of URLs. This issue was addressed with improved input validation. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An attacker in a privileged network position may be able to leak sensitive user information.
Ссылки
- Release NotesVendor Advisory
- Release NotesVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 13.7.1 (исключая)Версия от 14.0 (включая) до 14.7.1 (исключая)
Одно из
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
EPSS
Процентиль: 23%
0.00075
Низкий
5.9 Medium
CVSS3
7.5 High
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-922
Связанные уязвимости
CVSS3: 5.9
github
больше 1 года назад
An issue existed in the parsing of URLs. This issue was addressed with improved input validation. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An attacker in a privileged network position may be able to leak sensitive user information.
EPSS
Процентиль: 23%
0.00075
Низкий
5.9 Medium
CVSS3
7.5 High
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-922