[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2024-44309":6},{"stargazers_count":4,"fetched_at":5},5,"2026-04-08T08:11:26.341Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":44,"aliases":45,"duplicate_of":9,"upstream":46,"downstream":47,"duplicates":92,"related":93,"reserved_at":9,"published_at":101,"modified_at":102,"state":103,"summary":104,"references_raw":115,"kevs":154,"epss":165,"epss_history":168,"metrics":451,"affected":459},"CVE-2024-44309","A cookie management issue was addressed with improved state management. This issue is fixed in Safari 18.1.1, iOS 17.7.2 and iPadOS 17.7.2, iOS 18.1.1 and iPadOS 18.1.1, macOS Sequoia 15.1.1, visionOS 2.1.1. Processing maliciously crafted web content may lead to a cross site scripting attack. Apple is aware of a report that this issue may have been actively exploited on Intel-based Mac systems.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-79","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.","weakness","Stable","Base","High",[20,24,28,32,36,40],{"id":21,"name":22,"techniques":23},"CAPEC-209","XSS Using MIME Type Mismatch",[],{"id":25,"name":26,"techniques":27},"CAPEC-588","DOM-Based XSS",[],{"id":29,"name":30,"techniques":31},"CAPEC-591","Reflected XSS",[],{"id":33,"name":34,"techniques":35},"CAPEC-592","Stored XSS",[],{"id":37,"name":38,"techniques":39},"CAPEC-63","Cross-Site Scripting (XSS)",[],{"id":41,"name":42,"techniques":43},"CAPEC-85","AJAX Footprinting",[],[],[],[],[48,50,52,54,56,58,60,62,64,66,68,70,72,74,76,78,80,82,84,86,88,90],{"_key":49},"SUSE-SU-2024:4293-1",{"_key":51},"SUSE-SU-2024:4167-1",{"_key":53},"SUSE-SU-2025:0096-1",{"_key":55},"SUSE-SU-2025:0104-1",{"_key":57},"SUSE-SU-2024:4117-1",{"_key":59},"SUSE-SU-2024:4292-1",{"_key":61},"SUSE-SU-2025:0043-1",{"_key":63},"DLA-3982-1",{"_key":65},"DSA-5823-1",{"_key":67},"RHSA-2024:10472",{"_key":69},"RHSA-2024:10480",{"_key":71},"RHSA-2024:10481",{"_key":73},"RHSA-2024:10482",{"_key":75},"RHSA-2024:10483",{"_key":77},"RHSA-2024:10489",{"_key":79},"RHSA-2024:10492",{"_key":81},"RHSA-2024:10496",{"_key":83},"RHSA-2024:10501",{"_key":85},"RHSA-2025:10364",{"_key":87},"DEBIAN-CVE-2024-44309",{"_key":89},"UBUNTU-CVE-2024-44309",{"_key":91},"USN-7142-1",[],[94,95,96,97,98,99,100],{"_key":49},{"_key":51},{"_key":53},{"_key":55},{"_key":57},{"_key":59},{"_key":61},"2024-11-19T23:43:55.493Z","2026-04-02T18:26:41.434Z","Analyzed",{"cisa_kev":105,"cisa_ransomware":106,"cisa_vendor":107,"epss_severity":108,"epss_score":109,"severity":110,"severity_score":111,"severity_version":112,"severity_source":113,"severity_vector":114,"severity_status":103},true,false,"Apple","low",0.01274,"medium",6.3,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",[116,122,126,130,134,138,144,149],{"url":117,"sources":118,"tags":120},"https://support.apple.com/en-us/121756",[113,119],"nvd",[121],"Vendor Advisory",{"url":123,"sources":124,"tags":125},"https://support.apple.com/en-us/121753",[113,119],[121],{"url":127,"sources":128,"tags":129},"https://support.apple.com/en-us/121752",[113,119],[121],{"url":131,"sources":132,"tags":133},"https://support.apple.com/en-us/121755",[113,119],[121],{"url":135,"sources":136,"tags":137},"https://support.apple.com/en-us/121754",[113,119],[121],{"url":139,"sources":140,"tags":141},"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-44309",[113,119],[142,143],"Government Resource","US Government Resource",{"url":145,"sources":146,"tags":147},"https://lists.debian.org/debian-lts-announce/2024/12/msg00003.html",[113,119],[148],"Mailing List",{"url":150,"sources":151,"tags":152},"http://seclists.org/fulldisclosure/2024/Nov/16",[113,119],[148,153],"Third Party Advisory",[155],{"source":156,"vendor":107,"product":157,"date_added":158,"vulnerability_name":159,"short_description":160,"required_action":161,"due_date":162,"known_ransomware_campaign_use":163,"notes":164,"exploitation_type":9},"cisa","Multiple Products","2024-11-21","Apple Multiple Products Cross-Site Scripting (XSS) Vulnerability","Apple iOS, macOS, and other Apple products contain an unspecified vulnerability when processing maliciously crafted web content that may lead to a cross-site scripting (XSS) attack.","Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.","2024-12-12","Unknown","https://support.apple.com/en-us/121752, https://support.apple.com/en-us/121753, https://support.apple.com/en-us/121754, https://support.apple.com/en-us/121755, https://support.apple.com/en-us/121756 ; https://nvd.nist.gov/vuln/detail/CVE-2024-44309",{"date":166,"score":109,"percentile":167},"2026-04-07",0.79499,[169,173,177,180,183,186,189,192,195,198,201,204,207,210,213,217,220,223,227,230,233,237,240,244,247,250,253,256,259,262,265,269,272,275,278,281,284,287,290,293,295,298,301,304,307,311,314,317,320,323,326,329,332,335,339,343,346,349,353,356,359,362,365,369,372,375,378,381,385,388,391,394,397,400,403,406,409,412,415,418,421,424,427,430,433,436,439,442,445,448],{"date":170,"score":171,"percentile":172},"2025-11-04",0.00192,0.41373,{"date":174,"score":175,"percentile":176},"2025-11-05",0.00864,0.74332,{"date":178,"score":175,"percentile":179},"2025-11-06",0.74331,{"date":181,"score":175,"percentile":182},"2025-11-07",0.74348,{"date":184,"score":175,"percentile":185},"2025-11-08",0.74346,{"date":187,"score":175,"percentile":188},"2025-11-09",0.74342,{"date":190,"score":175,"percentile":191},"2025-11-10",0.74328,{"date":193,"score":175,"percentile":194},"2025-11-11",0.74329,{"date":196,"score":175,"percentile":197},"2025-11-12",0.74349,{"date":199,"score":175,"percentile":200},"2025-11-13",0.74356,{"date":202,"score":175,"percentile":203},"2025-11-14",0.74361,{"date":205,"score":175,"percentile":206},"2025-11-15",0.74358,{"date":208,"score":175,"percentile":209},"2025-11-16",0.74357,{"date":211,"score":175,"percentile":212},"2025-11-17",0.74351,{"date":214,"score":215,"percentile":216},"2025-11-18",0.00717,0.702,{"date":218,"score":215,"percentile":219},"2025-11-19",0.70207,{"date":221,"score":215,"percentile":222},"2025-11-20",0.70217,{"date":224,"score":225,"percentile":226},"2025-11-21",0.00538,0.66667,{"date":228,"score":225,"percentile":229},"2025-11-22",0.66675,{"date":231,"score":225,"percentile":232},"2025-11-23",0.66666,{"date":234,"score":235,"percentile":236},"2025-11-24",0.00487,0.6458,{"date":238,"score":235,"percentile":239},"2025-11-25",0.64582,{"date":241,"score":242,"percentile":243},"2025-11-26",0.00458,0.63216,{"date":245,"score":242,"percentile":246},"2025-11-27",0.63222,{"date":248,"score":242,"percentile":249},"2025-11-28",0.63203,{"date":251,"score":242,"percentile":252},"2025-11-29",0.63174,{"date":254,"score":242,"percentile":255},"2025-11-30",0.63164,{"date":257,"score":242,"percentile":258},"2025-12-01",0.63334,{"date":260,"score":242,"percentile":261},"2025-12-02",0.63351,{"date":263,"score":242,"percentile":264},"2025-12-03",0.63354,{"date":266,"score":267,"percentile":268},"2025-12-04",0.00362,0.57571,{"date":270,"score":267,"percentile":271},"2025-12-05",0.57584,{"date":273,"score":267,"percentile":274},"2025-12-06",0.57583,{"date":276,"score":267,"percentile":277},"2025-12-07",0.5758,{"date":279,"score":267,"percentile":280},"2025-12-08",0.57582,{"date":282,"score":267,"percentile":283},"2025-12-09",0.57609,{"date":285,"score":267,"percentile":286},"2025-12-10",0.57662,{"date":288,"score":267,"percentile":289},"2025-12-11",0.57688,{"date":291,"score":267,"percentile":292},"2025-12-12",0.57713,{"date":294,"score":267,"percentile":292},"2025-12-13",{"date":296,"score":267,"percentile":297},"2025-12-14",0.5771,{"date":299,"score":242,"percentile":300},"2025-12-15",0.63299,{"date":302,"score":242,"percentile":303},"2025-12-16",0.63313,{"date":305,"score":242,"percentile":306},"2025-12-17",0.63327,{"date":308,"score":309,"percentile":310},"2025-12-18",0.00595,0.68613,{"date":312,"score":309,"percentile":313},"2025-12-19",0.68629,{"date":315,"score":309,"percentile":316},"2025-12-20",0.68628,{"date":318,"score":309,"percentile":319},"2025-12-21",0.68615,{"date":321,"score":309,"percentile":322},"2025-12-22",0.68614,{"date":324,"score":309,"percentile":325},"2025-12-23",0.68609,{"date":327,"score":309,"percentile":328},"2025-12-24",0.68617,{"date":330,"score":309,"percentile":331},"2025-12-25",0.68647,{"date":333,"score":309,"percentile":334},"2025-12-26",0.68648,{"date":336,"score":337,"percentile":338},"2025-12-27",0.00363,0.57927,{"date":340,"score":341,"percentile":342},"2025-12-28",0.0057,0.6789,{"date":344,"score":341,"percentile":345},"2025-12-29",0.67883,{"date":347,"score":341,"percentile":348},"2025-12-30",0.67897,{"date":350,"score":351,"percentile":352},"2025-12-31",0.00608,0.69032,{"date":354,"score":351,"percentile":355},"2026-01-01",0.69204,{"date":357,"score":351,"percentile":358},"2026-01-02",0.69194,{"date":360,"score":351,"percentile":361},"2026-01-03",0.69193,{"date":363,"score":351,"percentile":364},"2026-01-04",0.69035,{"date":366,"score":367,"percentile":368},"2026-01-05",0.00591,0.68556,{"date":370,"score":367,"percentile":371},"2026-01-06",0.68567,{"date":373,"score":367,"percentile":374},"2026-01-07",0.68584,{"date":376,"score":367,"percentile":377},"2026-01-08",0.68599,{"date":379,"score":367,"percentile":380},"2026-01-09",0.68608,{"date":382,"score":383,"percentile":384},"2026-01-10",0.00581,0.68278,{"date":386,"score":383,"percentile":387},"2026-01-11",0.6827,{"date":389,"score":383,"percentile":390},"2026-01-12",0.6826,{"date":392,"score":383,"percentile":393},"2026-01-13",0.68258,{"date":395,"score":383,"percentile":396},"2026-01-14",0.68294,{"date":398,"score":383,"percentile":399},"2026-01-15",0.68301,{"date":401,"score":383,"percentile":402},"2026-01-16",0.68317,{"date":404,"score":383,"percentile":405},"2026-01-17",0.6831,{"date":407,"score":383,"percentile":408},"2026-01-18",0.68298,{"date":410,"score":383,"percentile":411},"2026-01-19",0.68286,{"date":413,"score":383,"percentile":414},"2026-01-20",0.68297,{"date":416,"score":383,"percentile":417},"2026-01-21",0.68306,{"date":419,"score":383,"percentile":420},"2026-01-22",0.68315,{"date":422,"score":383,"percentile":423},"2026-01-23",0.68344,{"date":425,"score":383,"percentile":426},"2026-01-24",0.68355,{"date":428,"score":383,"percentile":429},"2026-01-25",0.68327,{"date":431,"score":383,"percentile":432},"2026-01-26",0.68319,{"date":434,"score":383,"percentile":435},"2026-01-27",0.68323,{"date":437,"score":383,"percentile":438},"2026-01-28",0.68335,{"date":440,"score":383,"percentile":441},"2026-01-29",0.68334,{"date":443,"score":383,"percentile":444},"2026-01-30",0.68339,{"date":446,"score":383,"percentile":447},"2026-01-31",0.68345,{"date":449,"score":383,"percentile":450},"2026-02-01",0.68495,[452,457],{"source":113,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":453,"cvss_v4_0":9},{"baseScore":111,"baseSeverity":454,"vectorString":114,"impactScore":455,"exploitabilityScore":456},"MEDIUM",5.7,7.2,{"source":119,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":458,"cvss_v4_0":9},{"baseScore":111,"baseSeverity":454,"vectorString":114,"impactScore":455,"exploitabilityScore":456},[460,481,491,497,510,517,527],{"ecosystem":9,"name":461,"vendor":462,"product":463,"cpe_part":464,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":465},"iOS and iPadOS","apple","ios and ipados","a",[466,472,475,478],{"version":467,"is_range":105,"range_type":113,"version_start":468,"version_start_type":469,"version_end":470,"version_end_type":471,"fixed_in":9},">= unspecified, \u003C 18.1","unspecified","including","18.1","excluding",{"version":473,"is_range":105,"range_type":113,"version_start":468,"version_start_type":469,"version_end":474,"version_end_type":471,"fixed_in":9},">= unspecified, \u003C 17.7","17.7",{"version":476,"is_range":105,"range_type":113,"version_start":9,"version_start_type":9,"version_end":477,"version_end_type":471,"fixed_in":9},"\u003C 17.7.2","17.7.2",{"version":479,"is_range":105,"range_type":113,"version_start":9,"version_start_type":9,"version_end":480,"version_end_type":471,"fixed_in":9},"\u003C 18.1.1","18.1.1",{"ecosystem":9,"name":482,"vendor":462,"product":482,"cpe_part":483,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":484},"ipados","o",[485,488],{"version":486,"is_range":105,"range_type":487,"version_start":9,"version_start_type":9,"version_end":477,"version_end_type":471,"fixed_in":9},"lt17.7.2","cpe",{"version":489,"is_range":105,"range_type":487,"version_start":490,"version_start_type":469,"version_end":480,"version_end_type":471,"fixed_in":9},"gte18.0_lt18.1.1","18.0",{"ecosystem":9,"name":492,"vendor":462,"product":493,"cpe_part":483,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":494},"iphone os","iphone_os",[495,496],{"version":486,"is_range":105,"range_type":487,"version_start":9,"version_start_type":9,"version_end":477,"version_end_type":471,"fixed_in":9},{"version":489,"is_range":105,"range_type":487,"version_start":490,"version_start_type":469,"version_end":480,"version_end_type":471,"fixed_in":9},{"ecosystem":9,"name":498,"vendor":462,"product":499,"cpe_part":464,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":500},"macOS","macos",[501,504,507],{"version":502,"is_range":105,"range_type":113,"version_start":468,"version_start_type":469,"version_end":503,"version_end_type":471,"fixed_in":9},">= unspecified, \u003C 15.1","15.1",{"version":505,"is_range":105,"range_type":113,"version_start":9,"version_start_type":9,"version_end":506,"version_end_type":471,"fixed_in":9},"lt15.1.1","15.1.1",{"version":508,"is_range":105,"range_type":487,"version_start":509,"version_start_type":469,"version_end":506,"version_end_type":471,"fixed_in":9},"gte15.0_lt15.1.1","15.0",{"ecosystem":9,"name":511,"vendor":462,"product":512,"cpe_part":464,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":513},"Safari","safari",[514,515],{"version":467,"is_range":105,"range_type":113,"version_start":468,"version_start_type":469,"version_end":470,"version_end_type":471,"fixed_in":9},{"version":516,"is_range":105,"range_type":487,"version_start":9,"version_start_type":9,"version_end":480,"version_end_type":471,"fixed_in":9},"lt18.1.1",{"ecosystem":9,"name":518,"vendor":462,"product":519,"cpe_part":464,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":520},"visionOS","visionos",[521,524],{"version":522,"is_range":105,"range_type":113,"version_start":468,"version_start_type":469,"version_end":523,"version_end_type":471,"fixed_in":9},">= unspecified, \u003C 2.1","2.1",{"version":525,"is_range":105,"range_type":487,"version_start":9,"version_start_type":9,"version_end":526,"version_end_type":471,"fixed_in":9},"lt2.1.1","2.1.1",{"ecosystem":9,"name":528,"vendor":529,"product":530,"cpe_part":483,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":531},"debian linux","debian","debian_linux",[532],{"version":533,"is_range":106,"range_type":487,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0"]