Unrated severityNVD Advisory· Published Jul 28, 2023· Updated Feb 13, 2025
CVE-2023-38599
CVE-2023-38599
Description
A logic issue was addressed with improved state management. This issue is fixed in Safari 16.6, watchOS 9.6, iOS 15.7.8 and iPadOS 15.7.8, tvOS 16.6, iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. A website may be able to track sensitive user information.
Affected products
39- osv-coords34 versionspkg:rpm/almalinux/webkit2gtk3pkg:rpm/almalinux/webkit2gtk3-develpkg:rpm/almalinux/webkit2gtk3-jscpkg:rpm/almalinux/webkit2gtk3-jsc-develpkg:rpm/opensuse/webkit2gtk3&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/webkit2gtk3&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/webkit2gtk3-soup2&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/webkit2gtk3-soup2&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/webkit2gtk4&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/webkit2gtk4&distro=openSUSE%20Leap%2015.5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Enterprise%20Storage%207.1pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-ESPOSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCLpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Manager%20Proxy%204.2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Manager%20Server%204.2pkg:rpm/suse/webkit2gtk3-soup2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP4pkg:rpm/suse/webkit2gtk3-soup2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5pkg:rpm/suse/webkit2gtk4&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP4pkg:rpm/suse/webkit2gtk4&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP5
< 2.40.5-1.el9+ 33 more
- (no CPE)range: < 2.40.5-1.el9
- (no CPE)range: < 2.40.5-1.el9
- (no CPE)range: < 2.40.5-1.el9
- (no CPE)range: < 2.40.5-1.el9
- (no CPE)range: < 2.40.5-150400.4.45.3
- (no CPE)range: < 2.40.5-150400.4.45.3
- (no CPE)range: < 2.40.5-150400.4.45.3
- (no CPE)range: < 2.40.5-150400.4.45.3
- (no CPE)range: < 2.40.5-150400.4.45.3
- (no CPE)range: < 2.40.5-150400.4.45.3
- (no CPE)range: < 2.40.5-150200.78.1
- (no CPE)range: < 2.40.5-150000.3.144.1
- (no CPE)range: < 2.40.5-150200.78.1
- (no CPE)range: < 2.40.5-150200.78.1
- (no CPE)range: < 2.40.5-150200.78.1
- (no CPE)range: < 2.40.5-150400.4.45.3
- (no CPE)range: < 2.40.5-150400.4.45.3
- (no CPE)range: < 2.40.5-2.146.1
- (no CPE)range: < 2.40.5-2.146.1
- (no CPE)range: < 2.40.5-150000.3.144.1
- (no CPE)range: < 2.40.5-150200.78.1
- (no CPE)range: < 2.40.5-150200.78.1
- (no CPE)range: < 2.40.5-2.146.1
- (no CPE)range: < 2.40.5-150000.3.144.1
- (no CPE)range: < 2.40.5-150200.78.1
- (no CPE)range: < 2.40.5-150200.78.1
- (no CPE)range: < 2.40.5-2.146.1
- (no CPE)range: < 2.40.5-2.146.1
- (no CPE)range: < 2.40.5-150200.78.1
- (no CPE)range: < 2.40.5-150200.78.1
- (no CPE)range: < 2.40.5-150400.4.45.3
- (no CPE)range: < 2.40.5-150400.4.45.3
- (no CPE)range: < 2.40.5-150400.4.45.3
- (no CPE)range: < 2.40.5-150400.4.45.3
- Range: unspecified
- Range: unspecified
- Range: unspecified
- Range: unspecified
- Range: unspecified
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
11- www.openwall.com/lists/oss-security/2023/08/02/1mitre
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KJ4DG5LHWG2INDOTPB7MO4JVJN6LKL3M/mitre
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KQXJYKTGLKI6TJEFJCKPHCNY7PS72OER/mitre
- security.gentoo.org/glsa/202401-04mitre
- support.apple.com/en-us/HT213841mitre
- support.apple.com/en-us/HT213842mitre
- support.apple.com/en-us/HT213843mitre
- support.apple.com/en-us/HT213846mitre
- support.apple.com/en-us/HT213847mitre
- support.apple.com/en-us/HT213848mitre
- www.debian.org/security/2023/dsa-5468mitre
News mentions
0No linked articles in our index yet.