The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14. Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 16.7.
2023-09-21T19:15:11.660
2024-11-29T14:43:20.857
Analyzed
CVSSv3.1: 8.8 (HIGH)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | apple | ipados | < 17.0.1 | Yes |
| Operating System | apple | iphone_os | < 17.0.1 | Yes |
| Operating System | apple | macos | < 14.0 | Yes |
| Operating System | fedoraproject | fedora | 37 | Yes |
| Operating System | fedoraproject | fedora | 38 | Yes |
| Operating System | fedoraproject | fedora | 39 | Yes |
| Operating System | debian | debian_linux | 11.0 | Yes |
| Operating System | debian | debian_linux | 12.0 | Yes |
| Application | oracle | graalvm | 20.3.13 | Yes |
| Application | oracle | graalvm | 21.3.9 | Yes |
| Application | oracle | jdk | 1.8.0 | Yes |
| Application | oracle | jre | 1.8.0 | Yes |
| Application | netapp | active_iq_unified_manager | - | Yes |
| Application | netapp | active_iq_unified_manager | - | Yes |
| Application | netapp | cloud_insights_acquisition_unit | - | Yes |
| Application | netapp | cloud_insights_storage_workload_security_agent | - | Yes |
| Application | netapp | oncommand_insight | - | Yes |
| Application | netapp | oncommand_workflow_automation | - | Yes |
| Application | webkitgtk | webkitgtk\+ | < 2.42.2 | Yes |