High severity8.8NVD Advisory· Published Oct 25, 2023· Updated Jun 17, 2026
CVE-2023-42852
CVE-2023-42852
Description
A logic issue was addressed with improved checks. This issue is fixed in iOS 17.1 and iPadOS 17.1, watchOS 10.1, iOS 16.7.2 and iPadOS 16.7.2, macOS Sonoma 14.1, Safari 17.1, tvOS 17.1. Processing web content may lead to arbitrary code execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4217.1+ 1 more
- (no CPE)range: 17.1
- (no CPE)range: unspecified
Sonoma 14.1+ 1 more
- (no CPE)range: Sonoma 14.1
- (no CPE)range: unspecified
- Range: 16.7.2, 17.1
10.1+ 1 more
- (no CPE)range: 10.1
- (no CPE)range: unspecified
17.1+ 1 more
- (no CPE)range: 17.1
- (no CPE)range: unspecified
- Range: 16.7.2, 17.1
- osv-coords31 versionspkg:rpm/almalinux/webkit2gtk3pkg:rpm/almalinux/webkit2gtk3-develpkg:rpm/almalinux/webkit2gtk3-jscpkg:rpm/almalinux/webkit2gtk3-jsc-develpkg:rpm/opensuse/webkit2gtk3&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/webkit2gtk3&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/webkit2gtk3-soup2&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/webkit2gtk3-soup2&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/webkit2gtk4&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/webkit2gtk4&distro=openSUSE%20Leap%2015.5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Enterprise%20Storage%207.1pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-ESPOSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP5pkg:rpm/suse/webkit2gtk3-soup2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP4pkg:rpm/suse/webkit2gtk3-soup2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5pkg:rpm/suse/webkit2gtk4&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP4pkg:rpm/suse/webkit2gtk4&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP5
< 2.42.5-1.el9+ 30 more
- (no CPE)range: < 2.42.5-1.el9
- (no CPE)range: < 2.42.5-1.el9
- (no CPE)range: < 2.42.5-1.el9
- (no CPE)range: < 2.42.5-1.el9
- (no CPE)range: < 2.42.2-150400.4.64.2
- (no CPE)range: < 2.42.2-150400.4.64.2
- (no CPE)range: < 2.42.2-150400.4.64.2
- (no CPE)range: < 2.42.2-150400.4.64.2
- (no CPE)range: < 2.42.2-150400.4.64.2
- (no CPE)range: < 2.42.2-150400.4.64.2
- (no CPE)range: < 2.42.2-150200.91.1
- (no CPE)range: < 2.42.2-150000.3.157.1
- (no CPE)range: < 2.42.2-150200.91.1
- (no CPE)range: < 2.42.2-150200.91.1
- (no CPE)range: < 2.42.2-150200.91.1
- (no CPE)range: < 2.42.2-150400.4.64.2
- (no CPE)range: < 2.42.2-150400.4.64.2
- (no CPE)range: < 2.42.2-2.158.2
- (no CPE)range: < 2.42.2-150000.3.157.1
- (no CPE)range: < 2.42.2-150200.91.1
- (no CPE)range: < 2.42.2-150200.91.1
- (no CPE)range: < 2.42.2-2.158.2
- (no CPE)range: < 2.42.2-150000.3.157.1
- (no CPE)range: < 2.42.2-150200.91.1
- (no CPE)range: < 2.42.2-150200.91.1
- (no CPE)range: < 2.42.2-2.158.2
- (no CPE)range: < 2.42.2-2.158.2
- (no CPE)range: < 2.42.2-150400.4.64.2
- (no CPE)range: < 2.42.2-150400.4.64.2
- (no CPE)range: < 2.42.2-150400.4.64.2
- (no CPE)range: < 2.42.2-150400.4.64.2
- Range: unspecified
Patches
Vulnerability mechanics
References
19- seclists.org/fulldisclosure/2023/Oct/19nvdMailing ListThird Party Advisory
- seclists.org/fulldisclosure/2023/Oct/22nvdMailing ListThird Party Advisory
- seclists.org/fulldisclosure/2023/Oct/23nvdMailing ListThird Party Advisory
- seclists.org/fulldisclosure/2023/Oct/24nvdMailing ListThird Party Advisory
- seclists.org/fulldisclosure/2023/Oct/25nvdMailing ListThird Party Advisory
- seclists.org/fulldisclosure/2023/Oct/27nvdMailing ListThird Party Advisory
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RPPMOWFYZODONTA3RLZOKSGNR4DELGG2/nvdMailing ListThird Party Advisory
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S3O7ITSBZDHLBM5OG22K6RZAHRRTGECM/nvdMailing ListThird Party Advisory
- security.gentoo.org/glsa/202401-33nvdThird Party Advisory
- support.apple.com/en-us/HT213981nvdRelease NotesVendor Advisory
- support.apple.com/en-us/HT213982nvdRelease NotesVendor Advisory
- support.apple.com/en-us/HT213984nvdRelease NotesVendor Advisory
- support.apple.com/en-us/HT213986nvdRelease NotesVendor Advisory
- support.apple.com/en-us/HT213987nvdRelease NotesVendor Advisory
- support.apple.com/en-us/HT213988nvdRelease NotesVendor Advisory
- support.apple.com/kb/HT213984nvdThird Party Advisory
- www.debian.org/security/2023/dsa-5557nvdThird Party Advisory
- www.openwall.com/lists/oss-security/2023/11/15/1nvdMailing List
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZTCZGQPRDAOPP6NK4CIDJKIPMBWD5J7K/nvdMailing List
News mentions
0No linked articles in our index yet.