CVE-2023-42852

Published: Oct 25, 2023Modified: May 5, 2025

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

A logic issue was addressed with improved checks. This issue is fixed in iOS 17.1 and iPadOS 17.1, watchOS 10.1, iOS 16.7.2 and iPadOS 16.7.2, macOS Sonoma 14.1, Safari 17.1, tvOS 17.1. Processing web content may lead to arbitrary code execution.

Affected (11)

Products: Apple: Ipados, Iphone Os, Macos, Safari, Tvos, Watchos · Fedoraproject: Fedora · Debian: Debian Linux

6 products

1 product

1 product

Configuration A

8 vulnerable

Vulnerable Software	Affected Versions
Apple Ipados	Before 16.7.2
Apple Ipados	From 17.0 to 17.1
Apple Iphone Os	Before 16.7.2
Apple Iphone Os	From 17.0 to 17.1
Apple Macos	From 14.0 to 14.1
Apple Safari	Before 17.1
Apple Tvos	Before 17.1
Apple Watchos	Before 10.1

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Fedoraproject Fedora	Version 37

Configuration C

2 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 11.0
Debian Debian Linux	Version 12.0

References (38)

http://seclists.org/fulldisclosure/2023/Oct/19

Source: product-security@apple.com

Mailing ListThird Party Advisory

http://seclists.org/fulldisclosure/2023/Oct/22

Source: product-security@apple.com

Mailing ListThird Party Advisory

http://seclists.org/fulldisclosure/2023/Oct/23

Source: product-security@apple.com

Mailing ListThird Party Advisory

http://seclists.org/fulldisclosure/2023/Oct/24

Source: product-security@apple.com

Mailing ListThird Party Advisory

http://seclists.org/fulldisclosure/2023/Oct/25

Source: product-security@apple.com

Mailing ListThird Party Advisory

http://seclists.org/fulldisclosure/2023/Oct/27

Source: product-security@apple.com

Mailing ListThird Party Advisory

http://www.openwall.com/lists/oss-security/2023/11/15/1

Source: product-security@apple.com

Mailing List

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RPPMOWFYZODONTA3RLZOKSGNR4DELGG2/

Source: product-security@apple.com

Mailing ListThird Party Advisory

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S3O7ITSBZDHLBM5OG22K6RZAHRRTGECM/

Source: product-security@apple.com

Mailing ListThird Party Advisory

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZTCZGQPRDAOPP6NK4CIDJKIPMBWD5J7K/

Source: product-security@apple.com

Mailing List

https://security.gentoo.org/glsa/202401-33

Source: product-security@apple.com

Third Party Advisory

https://support.apple.com/en-us/HT213981

Source: product-security@apple.com

Release NotesVendor Advisory

https://support.apple.com/en-us/HT213982

Source: product-security@apple.com

Release NotesVendor Advisory

https://support.apple.com/en-us/HT213984

Source: product-security@apple.com

Release NotesVendor Advisory

https://support.apple.com/en-us/HT213986

Source: product-security@apple.com

Release NotesVendor Advisory

https://support.apple.com/en-us/HT213987

Source: product-security@apple.com

Release NotesVendor Advisory

https://support.apple.com/en-us/HT213988

Source: product-security@apple.com

Release NotesVendor Advisory

https://support.apple.com/kb/HT213984

Source: product-security@apple.com

Third Party Advisory

https://www.debian.org/security/2023/dsa-5557

Source: product-security@apple.com

Third Party Advisory

http://seclists.org/fulldisclosure/2023/Oct/19

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://seclists.org/fulldisclosure/2023/Oct/22

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://seclists.org/fulldisclosure/2023/Oct/23

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://seclists.org/fulldisclosure/2023/Oct/24

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://seclists.org/fulldisclosure/2023/Oct/25

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://seclists.org/fulldisclosure/2023/Oct/27

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://www.openwall.com/lists/oss-security/2023/11/15/1

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing List

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RPPMOWFYZODONTA3RLZOKSGNR4DELGG2/

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S3O7ITSBZDHLBM5OG22K6RZAHRRTGECM/

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZTCZGQPRDAOPP6NK4CIDJKIPMBWD5J7K/

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing List

https://security.gentoo.org/glsa/202401-33

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://support.apple.com/en-us/HT213981

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

https://support.apple.com/en-us/HT213982

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

https://support.apple.com/en-us/HT213984

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

https://support.apple.com/en-us/HT213986

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

https://support.apple.com/en-us/HT213987

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

https://support.apple.com/en-us/HT213988

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

https://support.apple.com/kb/HT213984

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://www.debian.org/security/2023/dsa-5557

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.