A logic issue was addressed with improved validation. This issue is fixed in macOS Ventura 13.3. Content Security Policy to block domains with wildcards may fail.
References
Link | Resource |
---|---|
http://www.openwall.com/lists/oss-security/2023/09/11/1 | Mailing List Third Party Advisory |
https://security.gentoo.org/glsa/202401-04 | |
https://support.apple.com/en-us/HT213670 | Release Notes Vendor Advisory |
Configurations
History
05 Jan 2024, 14:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
15 Oct 2023, 02:01
Type | Values Removed | Values Added |
---|---|---|
First Time |
Webkitgtk
Webkitgtk webkitgtk Wpewebkit wpe Webkit Wpewebkit |
|
References | (MISC) http://www.openwall.com/lists/oss-security/2023/09/11/1 - Mailing List, Third Party Advisory | |
CPE | cpe:2.3:a:webkitgtk:webkitgtk:*:*:*:*:*:*:*:* cpe:2.3:a:wpewebkit:wpe_webkit:*:*:*:*:*:*:*:* |
11 Sep 2023, 18:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
08 Sep 2023, 15:52
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.3 |
First Time |
Apple
Apple macos |
|
References | (MISC) https://support.apple.com/en-us/HT213670 - Release Notes, Vendor Advisory | |
CPE | cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* | |
CWE | NVD-CWE-noinfo |
06 Sep 2023, 02:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-09-06 02:15
Updated : 2024-01-05 14:15
NVD link : CVE-2023-32370
Mitre link : CVE-2023-32370
CVE.ORG link : CVE-2023-32370
JSON object : View
Products Affected
wpewebkit
- wpe_webkit
webkitgtk
- webkitgtk
apple
- macos
CWE