CVE-2024-44309CISA KEVEPSS p97.3%

CVE-2024-44309Apple Multiple Products Cross-Site Scripting (XSS) Vulnerability

Apple / Multiple Products

Description

Apple iOS, macOS, and other Apple products contain an unspecified vulnerability when processing maliciously crafted web content that may lead to a cross-site scripting (XSS) attack.

Scoring

EPSS21.04% probability of exploitation · percentile 97.3% · 2026-06-18T12:00:27Z

CISA KEV entry

Added to KEV: 2024-11-21

(incoming)1

TypeTargetConfidenceTier
KEVEntryApple Multiple Products Cross-Site Scripting (XSS) Vulnerabilitykev-cve-2024-443090%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Apple Multiple Products Code Execution Vulnerability
CVE
Apple iOS, iPadOS, and watchOS WebKit Cross-Site Scripting (XSS) Vulnerability
CVE
Apple Multiple Products WebKit Code Execution Vulnerability
CVE
Apple Multiple Products WebKit Memory Corruption Vulnerability
CVE
Apple Multiple Products WebKit Type Confusion Vulnerability
CVE
Apple Multiple Products WebKit Out-of-Bounds Write Vulnerability
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.