The host is installed with Apple Safari before 17.3 on Apple Mac OS 12, Apple Mac OS 13, or Apple Mac OS 14 before 14.3 and is prone to a cross-domain policy vulnerability. A flaw is present in the application, which fails to properly handle the checks issue. On successful exploitation, a malicious website may cause unexpected cross-origin behavior.