{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2023-28205", "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c", "assignerShortName": "apple", "dateUpdated": "2024-08-02T12:30:24.829Z", "dateReserved": "2023-03-13T00:00:00", "datePublished": "2023-04-10T00:00:00"}, "containers": {"cna": {"problemTypes": [{"descriptions": [{"lang": "en", "description": "Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited."}]}], "affected": [{"vendor": "Apple", "product": "iOS and iPadOS", "versions": [{"version": "unspecified", "status": "affected", "lessThan": "15.7", "versionType": "custom"}]}, {"vendor": "Apple", "product": "Safari", "versions": [{"version": "unspecified", "status": "affected", "lessThan": "16.4", "versionType": "custom"}]}, {"vendor": "Apple", "product": "macOS", "versions": [{"version": "unspecified", "status": "affected", "lessThan": "13.3", "versionType": "custom"}]}, {"vendor": "Apple", "product": "iOS and iPadOS", "versions": [{"version": "unspecified", "status": "affected", "lessThan": "16.4", "versionType": "custom"}]}], "descriptions": [{"lang": "en", "value": "A use after free issue was addressed with improved memory management. This issue is fixed in Safari 16.4.1, iOS 15.7.5 and iPadOS 15.7.5, iOS 16.4.1 and iPadOS 16.4.1, macOS Ventura 13.3.1. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited."}], "references": [{"url": "https://support.apple.com/en-us/HT213723"}, {"url": "https://support.apple.com/en-us/HT213722"}, {"url": "https://support.apple.com/en-us/HT213721"}, {"url": "https://support.apple.com/en-us/HT213720"}], "providerMetadata": {"orgId": "286789f9-fbc2-4510-9f9a-43facdede74c", "shortName": "apple", "dateUpdated": "2023-07-27T03:46:09.018Z"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T12:30:24.829Z"}, "title": "CVE Program Container", "references": [{"url": "https://support.apple.com/en-us/HT213723", "tags": ["x_transferred"]}, {"url": "https://support.apple.com/en-us/HT213722", "tags": ["x_transferred"]}, {"url": "https://support.apple.com/en-us/HT213721", "tags": ["x_transferred"]}, {"url": "https://support.apple.com/en-us/HT213720", "tags": ["x_transferred"]}]}]}}

{}

{"cisaActionDue": "2023-05-01", "cisaExploitAdd": "2023-04-10", "cisaRequiredAction": "Apply updates per vendor instructions.", "cisaVulnerabilityName": "Apple Multiple Products WebKit Use-After-Free Vulnerability", "configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*", "matchCriteriaId": "22BA2E4E-2C6C-47A8-810E-A67D1E8ABA88", "versionEndExcluding": "16.4.1", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*", "matchCriteriaId": "968ADFDD-5716-4F75-BCA2-DD8486ED9618", "versionEndExcluding": "15.7.5", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*", "matchCriteriaId": "8C1711DE-4691-42B7-8661-51B11C3E5B98", "versionEndExcluding": "16.4.1", "versionStartIncluding": "16.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*", "matchCriteriaId": "CE26F1A4-8813-40E4-B939-AFC1F75953CC", "versionEndExcluding": "15.7.5", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*", "matchCriteriaId": "96B6C1F1-6F18-43F9-83B6-58A214525B72", "versionEndExcluding": "16.4.1", "versionStartIncluding": "16.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*", "matchCriteriaId": "39C8733E-1512-47A9-BC06-73276A0EFAF7", "versionEndExcluding": "13.3.1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A use after free issue was addressed with improved memory management. This issue is fixed in Safari 16.4.1, iOS 15.7.5 and iPadOS 15.7.5, iOS 16.4.1 and iPadOS 16.4.1, macOS Ventura 13.3.1. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited."}], "id": "CVE-2023-28205", "lastModified": "2024-06-27T19:31:48.657", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-04-10T19:15:07.237", "references": [{"source": "product-security@apple.com", "tags": ["Release Notes"], "url": "https://support.apple.com/en-us/HT213720"}, {"source": "product-security@apple.com", "tags": ["Release Notes"], "url": "https://support.apple.com/en-us/HT213721"}, {"source": "product-security@apple.com", "tags": ["Release Notes"], "url": "https://support.apple.com/en-us/HT213722"}, {"source": "product-security@apple.com", "tags": ["Release Notes"], "url": "https://support.apple.com/en-us/HT213723"}], "sourceIdentifier": "product-security@apple.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-416"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHSA-2023:1919", "cpe": "cpe:/a:redhat:enterprise_linux:8", "package": "webkit2gtk3-0:2.36.7-1.el8_7.3", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2023-04-20T00:00:00Z"}, {"advisory": "RHSA-2023:1918", "cpe": "cpe:/a:redhat:enterprise_linux:9", "package": "webkit2gtk3-0:2.36.7-1.el9_1.3", "product_name": "Red Hat Enterprise Linux 9", "release_date": "2023-04-20T00:00:00Z"}], "bugzilla": {"description": "WebKitGTK: use-after-free leads to arbitrary code execution", "id": "2185724", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2185724"}, "csaw": true, "cvss3": {"cvss3_base_score": "8.8", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "status": "verified"}, "cwe": "CWE-416", "details": ["A use after free issue was addressed with improved memory management. This issue is fixed in Safari 16.4.1, iOS 15.7.5 and iPadOS 15.7.5, iOS 16.4.1 and iPadOS 16.4.1, macOS Ventura 13.3.1. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.", "A flaw was found in the webkitgtk package. An improper input validation issue may lead to a use-after-free vulnerability. This vulnerability allows attackers with network access to pass specially crafted web content files, causing Denial of Service or Arbitrary Code Execution."], "name": "CVE-2023-28205", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Out of support scope", "package_name": "webkitgtk", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Affected", "package_name": "webkitgtk3", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Affected", "package_name": "webkitgtk4", "product_name": "Red Hat Enterprise Linux 7"}], "public_date": "2023-04-07T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2023-28205\nhttps://nvd.nist.gov/vuln/detail/CVE-2023-28205\nhttps://github.com/advisories/GHSA-6qjh-p74q-89mv\nhttps://www.cisa.gov/known-exploited-vulnerabilities-catalog"], "statement": "Red Hat is not aware of any exploitation of this flaw in Linux platforms at this time.", "threat_severity": "Important"}