CVE-2023-40385
UNKNOWN
Published 2024-01-10T22:03:31.999Z
Actions:
Expert Analysis
Professional remediation guidance
Get tailored security recommendations from our analyst team for CVE-2023-40385. We'll provide specific mitigation strategies based on your environment and risk profile.
No CVSS data available
Description
This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sonoma 14, Safari 17, iOS 17 and iPadOS 17. A remote attacker may be able to view leaked DNS queries with Private Relay turned on.
Available Exploits
No exploits available for this CVE.
Related News
No news articles found for this CVE.
Affected Products
Affected Versions:
Affected Versions:
Affected Versions:
GitHub Security Advisories
Community-driven vulnerability intelligence from GitHub
⚠ Unreviewed
MODERATE
GHSA-42hw-x9jg-7942
Advisory Details
This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sonoma 14, Safari 17, iOS 17 and iPadOS 17. A remote attacker may be able to view leaked DNS queries with Private Relay turned on.
CVSS Scoring
CVSS Score
5.0
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
References
Advisory provided by GitHub Security Advisory Database. Published: January 11, 2024, Modified: January 18, 2024
References
Published: 2024-01-10T22:03:31.999Z
Last Modified: 2024-09-03T19:51:05.535Z
Copied to clipboard!