CVE-2024-23211 | Vulnerability Database | Aqua Security

A privacy issue was addressed with improved handling of user preferences. This issue is fixed in watchOS 10.3, iOS 17.3 and iPadOS 17.3, macOS Sonoma 14.3, iOS 16.7.5 and iPadOS 16.7.5, Safari 17.3. A users private browsing activity may be visible in Settings.

Affected Software

Name	Vendor	Start Version	End Version
Safari	Apple	*	17.3 (excluding)
Ipados	Apple	16.0 (excluding)	16.7.5 (excluding)
Ipados	Apple	17.0 (excluding)	17.3 (excluding)
Iphone_os	Apple	16.0 (excluding)	16.7.5 (excluding)
Iphone_os	Apple	17.0 (excluding)	17.3 (excluding)
Macos	Apple	14.0 (including)	14.3 (excluding)
Watchos	Apple	*	10.3 (excluding)

References

http://seclists.org/fulldisclosure/2024/Jan/27
http://seclists.org/fulldisclosure/2024/Jan/33
http://seclists.org/fulldisclosure/2024/Jan/34
http://seclists.org/fulldisclosure/2024/Jan/36
http://seclists.org/fulldisclosure/2024/Jan/39
https://support.apple.com/en-us/HT214056
https://support.apple.com/en-us/HT214059
https://support.apple.com/en-us/HT214060
https://support.apple.com/en-us/HT214061
https://support.apple.com/en-us/HT214063

NVD	https://nvd.nist.gov/vuln/detail/CVE-2024-23211
CWE	https://cwe.mitre.org/data/definitions/.html