CVE-2024-40817

The issue was addressed with improved UI handling. This issue is fixed in macOS Sonoma 14.6, Safari 17.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. Visiting a website that frames malicious content may lead to UI spoofing.

• http://seclists.org/fulldisclosure/2024/Jul/15
  Mailing ListThird Party Advisory
• http://seclists.org/fulldisclosure/2024/Jul/18
  Mailing ListThird Party Advisory
• http://seclists.org/fulldisclosure/2024/Jul/19
  Mailing ListThird Party Advisory
• http://seclists.org/fulldisclosure/2024/Jul/20
  Mailing ListThird Party Advisory
• https://support.apple.com/en-us/HT214118
  Release NotesVendor Advisory
• https://support.apple.com/en-us/HT214119
  Release NotesVendor Advisory
• https://support.apple.com/en-us/HT214120
  Release NotesVendor Advisory
• https://support.apple.com/en-us/HT214121
  Release NotesVendor Advisory
• https://support.apple.com/kb/HT214121
  Release NotesVendor Advisory
• http://seclists.org/fulldisclosure/2024/Jul/15
  Mailing ListThird Party Advisory
• http://seclists.org/fulldisclosure/2024/Jul/18
  Mailing ListThird Party Advisory
• http://seclists.org/fulldisclosure/2024/Jul/19
  Mailing ListThird Party Advisory
• http://seclists.org/fulldisclosure/2024/Jul/20
  Mailing ListThird Party Advisory
• https://support.apple.com/en-us/HT214118
  Release NotesVendor Advisory
• https://support.apple.com/en-us/HT214119
  Release NotesVendor Advisory
• https://support.apple.com/en-us/HT214120
  Release NotesVendor Advisory
• https://support.apple.com/en-us/HT214121
  Release NotesVendor Advisory
• https://support.apple.com/kb/HT214118
• https://support.apple.com/kb/HT214119
• https://support.apple.com/kb/HT214120