DEBIAN-CVE-2024-40785

DEBIAN-CVE-2024-40785 PUBLISHED CVSS 6.099999904632568 MEDIUM

This issue was addressed with improved checks. This issue is fixed in Safari 17.6, iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, tvOS 17.6, visionOS 1.3, watchOS 10.6. Processing maliciously crafted web content may lead to a cross site scripting attack.

Risk Scores

CVSS v3.1

6.099999904632568

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Affected Products

Vendor	Product	Versions
Debian:12	webkit2gtk	2.42.3-1~deb12u1, 2.42.3-1~deb11u1, 2.42.2-1~deb12u1
Debian:11	wpewebkit	2.38.3-1, 2.38.3-1, 2.38.4-1
Debian:13	wpewebkit	0, 0
Debian:14	webkit2gtk	0, 0
Debian:14	wpewebkit	0, 0
Debian:12	wpewebkit	2.48.3-1, 2.40.2-1, 2.40.2-2
Debian:13	webkit2gtk	0, 0
Debian:11	webkit2gtk	2.43.1-1, 2.43.2-1, 2.43.3-1

Timeline

Jul 29, 2024 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2024-40785 advisory

Open in Interactive Console →