The issue was addressed with improved checks. This issue is fixed in iOS 15.7.8 and iPadOS 15.7.8, iOS 16.6 and iPadOS 16.6, tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. A website may be able to bypass Same Origin Policy.
References
Configurations
Configuration 1 (hide)
|
History
05 Jan 2024, 14:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
18 Aug 2023, 03:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
07 Aug 2023, 08:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
04 Aug 2023, 03:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
03 Aug 2023, 19:57
Type | Values Removed | Values Added |
---|---|---|
CWE | NVD-CWE-noinfo | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
First Time |
Apple iphone Os
Apple tvos Apple watchos Apple Apple safari Apple ipados Apple macos |
|
CPE | cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:* cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:* |
|
References | (MISC) https://support.apple.com/en-us/HT213847 - Vendor Advisory | |
References | (MISC) http://www.openwall.com/lists/oss-security/2023/08/02/1 - Third Party Advisory | |
References | (MISC) https://support.apple.com/en-us/HT213843 - Vendor Advisory | |
References | (MISC) https://support.apple.com/en-us/HT213846 - Vendor Advisory | |
References | (MISC) https://support.apple.com/en-us/HT213848 - Vendor Advisory | |
References | (MISC) https://support.apple.com/en-us/HT213842 - Vendor Advisory | |
References | (MISC) https://support.apple.com/en-us/HT213841 - Vendor Advisory |
02 Aug 2023, 12:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
27 Jul 2023, 04:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-07-27 01:15
Updated : 2024-01-05 14:15
NVD link : CVE-2023-38572
Mitre link : CVE-2023-38572
CVE.ORG link : CVE-2023-38572
JSON object : View
Products Affected
apple
- macos
- iphone_os
- tvos
- ipados
- safari
- watchos
CWE