A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 16.4 and iPadOS 16.4, macOS Ventura 13.3. Processing web content may lead to arbitrary code execution.
References
Link | Resource |
---|---|
http://www.openwall.com/lists/oss-security/2023/09/11/1 | Mailing List Third Party Advisory |
https://security.gentoo.org/glsa/202401-04 | |
https://support.apple.com/en-us/HT213670 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT213676 | Release Notes Vendor Advisory |
Configurations
History
05 Jan 2024, 14:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
15 Oct 2023, 02:06
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) http://www.openwall.com/lists/oss-security/2023/09/11/1 - Mailing List, Third Party Advisory | |
First Time |
Webkitgtk
Webkitgtk webkitgtk Wpewebkit wpe Webkit Wpewebkit |
|
CPE | cpe:2.3:a:webkitgtk:webkitgtk:*:*:*:*:*:*:*:* cpe:2.3:a:wpewebkit:wpe_webkit:*:*:*:*:*:*:*:* |
11 Sep 2023, 18:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
19 Aug 2023, 00:43
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-416 | |
CPE | cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* |
|
First Time |
Apple
Apple iphone Os Apple ipados Apple macos |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.8 |
References | (MISC) https://support.apple.com/en-us/HT213676 - Release Notes, Vendor Advisory | |
References | (MISC) https://support.apple.com/en-us/HT213670 - Release Notes, Vendor Advisory |
14 Aug 2023, 23:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-08-14 23:15
Updated : 2024-01-05 14:15
NVD link : CVE-2023-28198
Mitre link : CVE-2023-28198
CVE.ORG link : CVE-2023-28198
JSON object : View
Products Affected
wpewebkit
- wpe_webkit
apple
- iphone_os
- ipados
- macos
webkitgtk
- webkitgtk
CWE
CWE-416
Use After Free