DEBIAN-CVE-2024-44308

DEBIAN-CVE-2024-44308 PUBLISHED CVSS 8.800000190734863 HIGH

The issue was addressed with improved checks. This issue is fixed in Safari 18.1.1, iOS 17.7.2 and iPadOS 17.7.2, iOS 18.1.1 and iPadOS 18.1.1, macOS Sequoia 15.1.1, visionOS 2.1.1. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited on Intel-based Mac systems.

Risk Scores

CVSS v3.1

8.800000190734863

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products

Vendor	Product	Versions
Debian:14	webkit2gtk	0, 0
Debian:14	wpewebkit	0, 0
Debian:11	wpewebkit	2.42.3-1, 2.42.4-1, 2.42.5-1
Debian:13	webkit2gtk	0, 0
Debian:11	webkit2gtk	2.40.0-2, 2.40.0-3, 2.40.1-1~deb11u1
Debian:12	wpewebkit	2.52.2-2, 2.38.6-1, 2.39.91-1
Debian:12	webkit2gtk	2.42.4-1, 2.43.4-1, 2.40.5-1
Debian:13	wpewebkit	0, 0

Timeline

Nov 20, 2024 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2024-44308 advisory

Open in Interactive Console →