24Nis
CVE-2024-23271 | Apple tvOS Website cross-domain policy
A vulnerability classified as critical has been found in Apple tvOS. This affects an unknown part of the component Website Handler. The manipulation leads to permissive cross-domain policy with untrusted domains. This vulnerability is uniquely identified as CVE-2024-23271. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.