CVE-2023-40451
27.09.2023, 15:19
This issue was addressed with improved iframe sandbox enforcement. This issue is fixed in Safari 17. An attacker with JavaScript execution may be able to execute arbitrary code.Enginsight
Vendor | Product | Version |
---|---|---|
apple | safari | 𝑥 < 17.0 |
𝑥
= Vulnerable software versions

Debian Releases
Debian Product | |||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
webkit2gtk |
| ||||||||||||
wpewebkit |
|

Ubuntu Releases
Ubuntu Product | |||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
qtwebkit-opensource-src |
| ||||||||||||||||
qtwebkit-source |
| ||||||||||||||||
webkit2gtk |
| ||||||||||||||||
webkitgtk |
| ||||||||||||||||
wpewebkit |
|
References