CVE-2023-40385

Published: Jan 10, 2024

Modified: Jun 17, 2025

PUBLISHED

Description

This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sonoma 14, Safari 17, iOS 17 and iPadOS 17. A remote attacker may be able to view leaked DNS queries with Private Relay turned on.

Vendor	Product	Versions
Apple	iOS and iPadOS	affected `unspecified - < 17`
Apple	Safari	affected `unspecified - < 17`
Apple	macOS	affected `unspecified - < 14`

References

https://support.apple.com/en-us/HT213938

https://support.apple.com/en-us/HT213941

https://support.apple.com/en-us/HT213940

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-40385

Description

Affected Products

References