The issue was addressed with improved checks. This issue is fixed in iOS 16.6 and iPadOS 16.6, Safari 16.5.2, tvOS 16.6, macOS Ventura 13.5, watchOS 9.6. Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
References
Link | Resource |
---|---|
https://security.gentoo.org/glsa/202401-04 | |
https://support.apple.com/en-us/HT213826 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT213841 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT213843 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT213846 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT213848 | Release Notes Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
05 Jan 2024, 14:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
02 Aug 2023, 00:54
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:* cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:* |
|
CWE | NVD-CWE-noinfo | |
First Time |
Apple iphone Os
Apple tvos Apple watchos Apple Apple safari Apple ipados Apple macos |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.8 |
References | (MISC) https://support.apple.com/en-us/HT213843 - Release Notes, Vendor Advisory | |
References | (MISC) https://support.apple.com/en-us/HT213846 - Release Notes, Vendor Advisory | |
References | (MISC) https://support.apple.com/en-us/HT213826 - Release Notes, Vendor Advisory | |
References | (MISC) https://support.apple.com/en-us/HT213848 - Release Notes, Vendor Advisory | |
References | (MISC) https://support.apple.com/en-us/HT213841 - Release Notes, Vendor Advisory |
27 Jul 2023, 04:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-07-27 00:15
Updated : 2024-01-05 14:15
NVD link : CVE-2023-37450
Mitre link : CVE-2023-37450
CVE.ORG link : CVE-2023-37450
JSON object : View
Products Affected
apple
- macos
- iphone_os
- tvos
- ipados
- safari
- watchos
CWE