[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2024-23280":6},{"stargazers_count":4,"fetched_at":5},5,"2026-04-08T03:11:47.468Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":168,"aliases":169,"duplicate_of":9,"upstream":170,"downstream":171,"duplicates":196,"related":197,"reserved_at":9,"published_at":205,"modified_at":206,"state":207,"summary":208,"references_raw":217,"kevs":314,"epss":315,"epss_history":318,"metrics":576,"affected":589},"CVE-2024-23280","An injection issue was addressed with improved validation. This issue is fixed in Safari 17.4, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, watchOS 10.4. A maliciously crafted webpage may be able to fingerprint the user.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-74","Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')","The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component.","weakness","Incomplete","Class","High",[20,24,28,32,36,40,44,48,52,56,60,64,68,72,76,80,84,88,92,96,100,104,108,112,116,120,124,128,132,136,140,144,148,152,156,160,164],{"id":21,"name":22,"techniques":23},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":25,"name":26,"techniques":27},"CAPEC-101","Server Side Include (SSI) Injection",[],{"id":29,"name":30,"techniques":31},"CAPEC-105","HTTP Request Splitting",[],{"id":33,"name":34,"techniques":35},"CAPEC-108","Command Line Execution through SQL Injection",[],{"id":37,"name":38,"techniques":39},"CAPEC-120","Double Encoding",[],{"id":41,"name":42,"techniques":43},"CAPEC-13","Subverting Environment Variable Values",[],{"id":45,"name":46,"techniques":47},"CAPEC-135","Format String Injection",[],{"id":49,"name":50,"techniques":51},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":53,"name":54,"techniques":55},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":57,"name":58,"techniques":59},"CAPEC-250","XML Injection",[],{"id":61,"name":62,"techniques":63},"CAPEC-267","Leverage Alternate Encoding",[],{"id":65,"name":66,"techniques":67},"CAPEC-273","HTTP Response Smuggling",[],{"id":69,"name":70,"techniques":71},"CAPEC-28","Fuzzing",[],{"id":73,"name":74,"techniques":75},"CAPEC-3","Using Leading 'Ghost' Character Sequences to Bypass Input Filters",[],{"id":77,"name":78,"techniques":79},"CAPEC-34","HTTP Response Splitting",[],{"id":81,"name":82,"techniques":83},"CAPEC-42","MIME Conversion",[],{"id":85,"name":86,"techniques":87},"CAPEC-43","Exploiting Multiple Input Interpretation Layers",[],{"id":89,"name":90,"techniques":91},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":93,"name":94,"techniques":95},"CAPEC-46","Overflow Variables and Tags",[],{"id":97,"name":98,"techniques":99},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":101,"name":102,"techniques":103},"CAPEC-51","Poison Web Service Registry",[],{"id":105,"name":106,"techniques":107},"CAPEC-52","Embedding NULL Bytes",[],{"id":109,"name":110,"techniques":111},"CAPEC-53","Postfix, Null Terminate, and Backslash",[],{"id":113,"name":114,"techniques":115},"CAPEC-6","Argument Injection",[],{"id":117,"name":118,"techniques":119},"CAPEC-64","Using Slashes and URL Encoding Combined to Bypass Validation Logic",[],{"id":121,"name":122,"techniques":123},"CAPEC-67","String Format Overflow in syslog()",[],{"id":125,"name":126,"techniques":127},"CAPEC-7","Blind SQL Injection",[],{"id":129,"name":130,"techniques":131},"CAPEC-71","Using Unicode Encoding to Bypass Validation Logic",[],{"id":133,"name":134,"techniques":135},"CAPEC-72","URL Encoding",[],{"id":137,"name":138,"techniques":139},"CAPEC-76","Manipulating Web Input to File System Calls",[],{"id":141,"name":142,"techniques":143},"CAPEC-78","Using Escaped Slashes in Alternate Encoding",[],{"id":145,"name":146,"techniques":147},"CAPEC-79","Using Slashes in Alternate Encoding",[],{"id":149,"name":150,"techniques":151},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":153,"name":154,"techniques":155},"CAPEC-80","Using UTF-8 Encoding to Bypass Validation Logic",[],{"id":157,"name":158,"techniques":159},"CAPEC-83","XPath Injection",[],{"id":161,"name":162,"techniques":163},"CAPEC-84","XQuery Injection",[],{"id":165,"name":166,"techniques":167},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],[],[],[],[172,174,176,178,180,182,184,186,188,190,192,194],{"_key":173},"SUSE-SU-2024:1269-1",{"_key":175},"SUSE-SU-2024:1293-1",{"_key":177},"SUSE-SU-2024:1976-1",{"_key":179},"UBUNTU-CVE-2024-23280",{"_key":181},"USN-6732-1",{"_key":183},"SUSE-SU-2024:1270-1",{"_key":185},"SUSE-SU-2024:1944-1",{"_key":187},"DSA-5684-1",{"_key":189},"RHSA-2024:8180",{"_key":191},"DEBIAN-CVE-2024-23280",{"_key":193},"RHSA-2024:10481",{"_key":195},"RHSA-2025:10364",[],[198,200,201,202,203,204],{"_key":199},"MGASA-2024-0148",{"_key":173},{"_key":175},{"_key":177},{"_key":183},{"_key":185},"2024-03-08T01:36:14.625Z","2026-04-02T18:25:29.626Z","Modified",{"cisa_kev":209,"cisa_ransomware":209,"cisa_vendor":9,"epss_severity":210,"epss_score":211,"severity":212,"severity_score":213,"severity_version":214,"severity_source":215,"severity_vector":216,"severity_status":207},false,"low",0.00515,"high",7.5,"v3.1","cve.org","CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",[218,225,229,233,237,241,246,250,254,258,262,266,270,274,278,282,286,290,294,298,302,306,310],{"url":219,"sources":220,"tags":222},"https://support.apple.com/en-us/HT214086",[215,221],"nvd",[223,224],"Vendor Advisory","X Transferred",{"url":226,"sources":227,"tags":228},"https://support.apple.com/en-us/HT214081",[215,221],[223,224],{"url":230,"sources":231,"tags":232},"https://support.apple.com/en-us/HT214089",[215,221],[223,224],{"url":234,"sources":235,"tags":236},"https://support.apple.com/en-us/HT214084",[215,221],[223,224],{"url":238,"sources":239,"tags":240},"https://support.apple.com/en-us/HT214088",[215,221],[223,224],{"url":242,"sources":243,"tags":244},"http://seclists.org/fulldisclosure/2024/Mar/20",[215,221],[245,224],"Mailing List",{"url":247,"sources":248,"tags":249},"http://seclists.org/fulldisclosure/2024/Mar/21",[215,221],[245,224],{"url":251,"sources":252,"tags":253},"http://seclists.org/fulldisclosure/2024/Mar/25",[215,221],[245,224],{"url":255,"sources":256,"tags":257},"http://seclists.org/fulldisclosure/2024/Mar/24",[215,221],[245,224],{"url":259,"sources":260,"tags":261},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BAIPBVDQV3GHMSNSZNEJCRZEPM7BEYGF/",[215,221],[245,224],{"url":263,"sources":264,"tags":265},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AO4BNNL5X2LQBJ6WX7VT4SGMA6R7DUU5/",[215,221],[245,224],{"url":267,"sources":268,"tags":269},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PXORDRCSQAQU436W4S2Z3X5B5PDXL3LI/",[215,221],[245,224],{"url":271,"sources":272,"tags":273},"http://www.openwall.com/lists/oss-security/2024/03/26/1",[215,221],[245,224],{"url":275,"sources":276,"tags":277},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IXLXIOAH5S7J22LJTCIAVFVVJ4TESAX4/",[215,221],[245,224],{"url":279,"sources":280,"tags":281},"https://support.apple.com/kb/HT214089",[215,221],[],{"url":283,"sources":284,"tags":285},"https://support.apple.com/kb/HT214086",[215,221],[],{"url":287,"sources":288,"tags":289},"https://support.apple.com/kb/HT214084",[215,221],[],{"url":291,"sources":292,"tags":293},"https://support.apple.com/kb/HT214081",[215,221],[],{"url":295,"sources":296,"tags":297},"https://support.apple.com/en-us/120881",[215,221],[],{"url":299,"sources":300,"tags":301},"https://support.apple.com/en-us/120882",[215,221],[],{"url":303,"sources":304,"tags":305},"https://support.apple.com/en-us/120893",[215,221],[],{"url":307,"sources":308,"tags":309},"https://support.apple.com/en-us/120894",[215,221],[],{"url":311,"sources":312,"tags":313},"https://support.apple.com/en-us/120895",[215,221],[],[],{"date":316,"score":211,"percentile":317},"2026-04-07",0.6657,[319,323,326,329,332,335,338,341,344,347,350,353,355,358,361,365,368,371,373,376,379,381,384,386,388,390,393,396,399,402,405,407,410,412,414,417,420,423,426,429,432,435,438,441,444,447,450,453,456,459,462,464,467,470,473,476,479,481,484,487,490,492,494,497,500,503,506,509,512,514,517,520,522,525,528,532,535,538,541,544,547,550,553,556,559,562,565,567,570,573],{"date":320,"score":321,"percentile":322},"2025-11-04",0.0053,0.66372,{"date":324,"score":321,"percentile":325},"2025-11-05",0.66347,{"date":327,"score":321,"percentile":328},"2025-11-06",0.66342,{"date":330,"score":321,"percentile":331},"2025-11-07",0.66354,{"date":333,"score":321,"percentile":334},"2025-11-08",0.66351,{"date":336,"score":321,"percentile":337},"2025-11-09",0.6634,{"date":339,"score":321,"percentile":340},"2025-11-10",0.6633,{"date":342,"score":321,"percentile":343},"2025-11-11",0.66339,{"date":345,"score":321,"percentile":346},"2025-11-12",0.66359,{"date":348,"score":321,"percentile":349},"2025-11-13",0.6637,{"date":351,"score":321,"percentile":352},"2025-11-14",0.66377,{"date":354,"score":321,"percentile":322},"2025-11-15",{"date":356,"score":321,"percentile":357},"2025-11-16",0.66367,{"date":359,"score":321,"percentile":360},"2025-11-17",0.66364,{"date":362,"score":363,"percentile":364},"2025-11-18",0.03631,0.86643,{"date":366,"score":363,"percentile":367},"2025-11-19",0.86644,{"date":369,"score":363,"percentile":370},"2025-11-20",0.86645,{"date":372,"score":321,"percentile":322},"2025-11-21",{"date":374,"score":321,"percentile":375},"2025-11-22",0.66379,{"date":377,"score":321,"percentile":378},"2025-11-23",0.66368,{"date":380,"score":321,"percentile":331},"2025-11-24",{"date":382,"score":321,"percentile":383},"2025-11-25",0.66358,{"date":385,"score":321,"percentile":360},"2025-11-26",{"date":387,"score":321,"percentile":349},"2025-11-27",{"date":389,"score":321,"percentile":331},"2025-11-28",{"date":391,"score":321,"percentile":392},"2025-11-29",0.66338,{"date":394,"score":321,"percentile":395},"2025-11-30",0.66333,{"date":397,"score":321,"percentile":398},"2025-12-01",0.66496,{"date":400,"score":321,"percentile":401},"2025-12-02",0.66508,{"date":403,"score":321,"percentile":404},"2025-12-03",0.66507,{"date":406,"score":321,"percentile":395},"2025-12-04",{"date":408,"score":321,"percentile":409},"2025-12-05",0.66345,{"date":411,"score":321,"percentile":334},"2025-12-06",{"date":413,"score":321,"percentile":409},"2025-12-07",{"date":415,"score":321,"percentile":416},"2025-12-08",0.6635,{"date":418,"score":321,"percentile":419},"2025-12-09",0.66383,{"date":421,"score":321,"percentile":422},"2025-12-10",0.66431,{"date":424,"score":321,"percentile":425},"2025-12-11",0.66451,{"date":427,"score":321,"percentile":428},"2025-12-12",0.66477,{"date":430,"score":321,"percentile":431},"2025-12-13",0.66483,{"date":433,"score":321,"percentile":434},"2025-12-14",0.66486,{"date":436,"score":321,"percentile":437},"2025-12-15",0.66484,{"date":439,"score":321,"percentile":440},"2025-12-16",0.66499,{"date":442,"score":321,"percentile":443},"2025-12-17",0.66514,{"date":445,"score":321,"percentile":446},"2025-12-18",0.66551,{"date":448,"score":321,"percentile":449},"2025-12-19",0.66567,{"date":451,"score":321,"percentile":452},"2025-12-20",0.66566,{"date":454,"score":321,"percentile":455},"2025-12-21",0.66555,{"date":457,"score":321,"percentile":458},"2025-12-22",0.66554,{"date":460,"score":321,"percentile":461},"2025-12-23",0.66548,{"date":463,"score":321,"percentile":455},"2025-12-24",{"date":465,"score":321,"percentile":466},"2025-12-25",0.66588,{"date":468,"score":321,"percentile":469},"2025-12-26",0.66585,{"date":471,"score":321,"percentile":472},"2025-12-27",0.66645,{"date":474,"score":321,"percentile":475},"2025-12-28",0.66559,{"date":477,"score":321,"percentile":478},"2025-12-29",0.66549,{"date":480,"score":321,"percentile":449},"2025-12-30",{"date":482,"score":321,"percentile":483},"2025-12-31",0.6659,{"date":485,"score":321,"percentile":486},"2026-01-01",0.6677,{"date":488,"score":321,"percentile":489},"2026-01-02",0.66755,{"date":491,"score":321,"percentile":489},"2026-01-03",{"date":493,"score":321,"percentile":469},"2026-01-04",{"date":495,"score":321,"percentile":496},"2026-01-05",0.66574,{"date":498,"score":321,"percentile":499},"2026-01-06",0.66584,{"date":501,"score":321,"percentile":502},"2026-01-07",0.66604,{"date":504,"score":321,"percentile":505},"2026-01-08",0.66618,{"date":507,"score":321,"percentile":508},"2026-01-09",0.66629,{"date":510,"score":321,"percentile":511},"2026-01-10",0.66631,{"date":513,"score":321,"percentile":505},"2026-01-11",{"date":515,"score":321,"percentile":516},"2026-01-12",0.66603,{"date":518,"score":321,"percentile":519},"2026-01-13",0.66598,{"date":521,"score":321,"percentile":511},"2026-01-14",{"date":523,"score":321,"percentile":524},"2026-01-15",0.66635,{"date":526,"score":321,"percentile":527},"2026-01-16",0.66651,{"date":529,"score":530,"percentile":531},"2026-01-17",0.00576,0.68169,{"date":533,"score":530,"percentile":534},"2026-01-18",0.68157,{"date":536,"score":530,"percentile":537},"2026-01-19",0.68145,{"date":539,"score":530,"percentile":540},"2026-01-20",0.68156,{"date":542,"score":530,"percentile":543},"2026-01-21",0.68164,{"date":545,"score":530,"percentile":546},"2026-01-22",0.68173,{"date":548,"score":530,"percentile":549},"2026-01-23",0.68201,{"date":551,"score":530,"percentile":552},"2026-01-24",0.68212,{"date":554,"score":530,"percentile":555},"2026-01-25",0.68184,{"date":557,"score":530,"percentile":558},"2026-01-26",0.68175,{"date":560,"score":530,"percentile":561},"2026-01-27",0.68182,{"date":563,"score":530,"percentile":564},"2026-01-28",0.68193,{"date":566,"score":530,"percentile":564},"2026-01-29",{"date":568,"score":530,"percentile":569},"2026-01-30",0.682,{"date":571,"score":530,"percentile":572},"2026-01-31",0.68204,{"date":574,"score":530,"percentile":575},"2026-02-01",0.68356,[577,582],{"source":215,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":578,"cvss_v4_0":9},{"baseScore":213,"baseSeverity":579,"vectorString":216,"impactScore":580,"exploitabilityScore":581},"HIGH",9.8,4.1,{"source":221,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":583,"cvss_v4_0":9},{"baseScore":584,"baseSeverity":585,"vectorString":586,"impactScore":587,"exploitabilityScore":588},6.5,"MEDIUM","CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",6,7.2,[590,605,613,618,630,636,642,651,661,667],{"ecosystem":9,"name":591,"vendor":592,"product":593,"cpe_part":594,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":595},"iOS and iPadOS","apple","ios and ipados","a",[596,603],{"version":597,"is_range":598,"range_type":215,"version_start":599,"version_start_type":600,"version_end":601,"version_end_type":602,"fixed_in":9},">= unspecified, \u003C 17.4",true,"unspecified","including","17.4","excluding",{"version":604,"is_range":598,"range_type":215,"version_start":9,"version_start_type":9,"version_end":601,"version_end_type":602,"fixed_in":9},"\u003C 17.4",{"ecosystem":9,"name":606,"vendor":592,"product":607,"cpe_part":608,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":609},"ipad os","ipad_os","o",[610],{"version":611,"is_range":598,"range_type":612,"version_start":9,"version_start_type":9,"version_end":601,"version_end_type":602,"fixed_in":9},"lt17.4","cpe",{"ecosystem":9,"name":614,"vendor":592,"product":615,"cpe_part":608,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":616},"iphone os","iphone_os",[617],{"version":611,"is_range":598,"range_type":612,"version_start":9,"version_start_type":9,"version_end":601,"version_end_type":602,"fixed_in":9},{"ecosystem":9,"name":619,"vendor":592,"product":620,"cpe_part":594,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":621},"macOS","macos",[622,625,627],{"version":623,"is_range":598,"range_type":215,"version_start":599,"version_start_type":600,"version_end":624,"version_end_type":602,"fixed_in":9},">= unspecified, \u003C 14.4","14.4",{"version":626,"is_range":598,"range_type":215,"version_start":9,"version_start_type":9,"version_end":624,"version_end_type":602,"fixed_in":9},"lt14.4",{"version":628,"is_range":598,"range_type":612,"version_start":629,"version_start_type":600,"version_end":624,"version_end_type":602,"fixed_in":9},"gte14.0_lt14.4","14.0",{"ecosystem":9,"name":631,"vendor":592,"product":632,"cpe_part":594,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":633},"Safari","safari",[634,635],{"version":597,"is_range":598,"range_type":215,"version_start":599,"version_start_type":600,"version_end":601,"version_end_type":602,"fixed_in":9},{"version":611,"is_range":598,"range_type":612,"version_start":9,"version_start_type":9,"version_end":601,"version_end_type":602,"fixed_in":9},{"ecosystem":9,"name":637,"vendor":592,"product":638,"cpe_part":594,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":639},"tvOS","tvos",[640,641],{"version":597,"is_range":598,"range_type":215,"version_start":599,"version_start_type":600,"version_end":601,"version_end_type":602,"fixed_in":9},{"version":611,"is_range":598,"range_type":612,"version_start":9,"version_start_type":9,"version_end":601,"version_end_type":602,"fixed_in":9},{"ecosystem":9,"name":643,"vendor":592,"product":644,"cpe_part":594,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":645},"watchOS","watchos",[646,649],{"version":647,"is_range":598,"range_type":215,"version_start":599,"version_start_type":600,"version_end":648,"version_end_type":602,"fixed_in":9},">= unspecified, \u003C 10.4","10.4",{"version":650,"is_range":598,"range_type":612,"version_start":9,"version_start_type":9,"version_end":648,"version_end_type":602,"fixed_in":9},"lt10.4",{"ecosystem":9,"name":652,"vendor":653,"product":652,"cpe_part":608,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":654},"fedora","fedoraproject",[655,657,659],{"version":656,"is_range":209,"range_type":612,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"38",{"version":658,"is_range":209,"range_type":612,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"39",{"version":660,"is_range":209,"range_type":612,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"40",{"ecosystem":9,"name":662,"vendor":9,"product":662,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":663},"WebKitGTK",[664],{"version":665,"is_range":598,"range_type":612,"version_start":9,"version_start_type":9,"version_end":666,"version_end_type":602,"fixed_in":9},"lt2.44.0","2.44.0",{"ecosystem":9,"name":668,"vendor":669,"product":670,"cpe_part":594,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":671},"wpe webkit","wpewebkit","wpe_webkit",[672],{"version":665,"is_range":598,"range_type":612,"version_start":9,"version_start_type":9,"version_end":666,"version_end_type":602,"fixed_in":9}]