Unrated severityNVD Advisory· Published Jul 26, 2023· Updated Feb 13, 2025
CVE-2023-38594
CVE-2023-38594
Description
The issue was addressed with improved checks. This issue is fixed in iOS 15.7.8 and iPadOS 15.7.8, iOS 16.6 and iPadOS 16.6, tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. Processing web content may lead to arbitrary code execution.
Affected products
39- osv-coords34 versionspkg:rpm/almalinux/webkit2gtk3pkg:rpm/almalinux/webkit2gtk3-develpkg:rpm/almalinux/webkit2gtk3-jscpkg:rpm/almalinux/webkit2gtk3-jsc-develpkg:rpm/opensuse/webkit2gtk3&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/webkit2gtk3&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/webkit2gtk3-soup2&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/webkit2gtk3-soup2&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/webkit2gtk4&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/webkit2gtk4&distro=openSUSE%20Leap%2015.5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Enterprise%20Storage%207.1pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-ESPOSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCLpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Manager%20Proxy%204.2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Manager%20Server%204.2pkg:rpm/suse/webkit2gtk3-soup2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP4pkg:rpm/suse/webkit2gtk3-soup2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5pkg:rpm/suse/webkit2gtk4&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP4pkg:rpm/suse/webkit2gtk4&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP5
< 2.40.5-1.el9+ 33 more
- (no CPE)range: < 2.40.5-1.el9
- (no CPE)range: < 2.40.5-1.el9
- (no CPE)range: < 2.40.5-1.el9
- (no CPE)range: < 2.40.5-1.el9
- (no CPE)range: < 2.40.5-150400.4.45.3
- (no CPE)range: < 2.40.5-150400.4.45.3
- (no CPE)range: < 2.40.5-150400.4.45.3
- (no CPE)range: < 2.40.5-150400.4.45.3
- (no CPE)range: < 2.40.5-150400.4.45.3
- (no CPE)range: < 2.40.5-150400.4.45.3
- (no CPE)range: < 2.40.5-150200.78.1
- (no CPE)range: < 2.40.5-150000.3.144.1
- (no CPE)range: < 2.40.5-150200.78.1
- (no CPE)range: < 2.40.5-150200.78.1
- (no CPE)range: < 2.40.5-150200.78.1
- (no CPE)range: < 2.40.5-150400.4.45.3
- (no CPE)range: < 2.40.5-150400.4.45.3
- (no CPE)range: < 2.40.5-2.146.1
- (no CPE)range: < 2.40.5-2.146.1
- (no CPE)range: < 2.40.5-150000.3.144.1
- (no CPE)range: < 2.40.5-150200.78.1
- (no CPE)range: < 2.40.5-150200.78.1
- (no CPE)range: < 2.40.5-2.146.1
- (no CPE)range: < 2.40.5-150000.3.144.1
- (no CPE)range: < 2.40.5-150200.78.1
- (no CPE)range: < 2.40.5-150200.78.1
- (no CPE)range: < 2.40.5-2.146.1
- (no CPE)range: < 2.40.5-2.146.1
- (no CPE)range: < 2.40.5-150200.78.1
- (no CPE)range: < 2.40.5-150200.78.1
- (no CPE)range: < 2.40.5-150400.4.45.3
- (no CPE)range: < 2.40.5-150400.4.45.3
- (no CPE)range: < 2.40.5-150400.4.45.3
- (no CPE)range: < 2.40.5-150400.4.45.3
- Range: unspecified
- Range: unspecified
- Range: unspecified
- Range: unspecified
- Range: unspecified
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
11- www.openwall.com/lists/oss-security/2023/08/02/1mitre
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KJ4DG5LHWG2INDOTPB7MO4JVJN6LKL3M/mitre
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KQXJYKTGLKI6TJEFJCKPHCNY7PS72OER/mitre
- security.gentoo.org/glsa/202401-04mitre
- support.apple.com/en-us/HT213841mitre
- support.apple.com/en-us/HT213842mitre
- support.apple.com/en-us/HT213843mitre
- support.apple.com/en-us/HT213846mitre
- support.apple.com/en-us/HT213847mitre
- support.apple.com/en-us/HT213848mitre
- www.debian.org/security/2023/dsa-5468mitre
News mentions
0No linked articles in our index yet.