{"id":"CVE-2024-54467","details":"A cookie management issue was addressed with improved state management. This issue is fixed in watchOS 11, macOS Sequoia 15, Safari 18, visionOS 2, iOS 18 and iPadOS 18, tvOS 18. A malicious website may exfiltrate data cross-origin.","modified":"2026-04-16T04:35:14.434703686Z","published":"2025-03-10T19:15:38.387Z","related":["ALSA-2025:3713","ALSA-2025:3974","ALSA-2025:7387","SUSE-SU-2025:02765-1","SUSE-SU-2025:02766-1","SUSE-SU-2025:02777-1","SUSE-SU-2025:02973-1","SUSE-SU-2025:1033-1","SUSE-SU-2025:1149-1","SUSE-SU-2025:1325-1"],"references":[{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/06/msg00016.html"},{"type":"ADVISORY","url":"https://support.apple.com/en-us/121238"},{"type":"ADVISORY","url":"https://support.apple.com/en-us/121240"},{"type":"ADVISORY","url":"https://support.apple.com/en-us/121241"},{"type":"ADVISORY","url":"https://support.apple.com/en-us/121248"},{"type":"ADVISORY","url":"https://support.apple.com/en-us/121249"},{"type":"ADVISORY","url":"https://support.apple.com/en-us/121250"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-54467.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"18.0"}]},{"events":[{"introduced":"0"},{"fixed":"18.0"}]},{"events":[{"introduced":"0"},{"fixed":"18.0"}]},{"events":[{"introduced":"0"},{"fixed":"15.0"}]},{"events":[{"introduced":"0"},{"fixed":"18.0"}]},{"events":[{"introduced":"0"},{"fixed":"11.0"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}]}