Description

The issue was addressed with improved routing of Safari-originated requests. This issue is fixed in Safari 18.2, iOS 18.2 and iPadOS 18.2, iPadOS 17.7.3, macOS Sequoia 15.2. On a device with Private Relay enabled, adding a website to the Safari Reading List may reveal the originating IP address to the website.

INFO

Published Date :

2024-12-11T22:58:24.725Z

Last Modified :

2026-04-02T18:21:55.821Z

Source :

apple
AFFECTED PRODUCTS

The following products are affected by CVE-2024-44246 vulnerability.

Vendors Products
Apple
  • Ipados
  • Iphone Os
  • Macos
  • Safari
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-44246.

URL Resource
http://seclists.org/fulldisclosure/2024/Dec/13 cve-icon
http://seclists.org/fulldisclosure/2024/Dec/6 cve-icon
http://seclists.org/fulldisclosure/2024/Dec/7 cve-icon
https://support.apple.com/en-us/121837 cve-icon cve-icon
https://support.apple.com/en-us/121838 cve-icon cve-icon
https://support.apple.com/en-us/121839 cve-icon cve-icon
https://support.apple.com/en-us/121846 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact