Home > Vulnerability Database > CVE-2023-32373

Mend.io Vulnerability Database

CVE-2023-32373

Good to know:

Date: June 22, 2023

A use-after-free issue was addressed with improved memory management. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, iOS 15.7.6 and iPadOS 15.7.6, Safari 16.5, iOS 16.5 and iPadOS 16.5. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.

Language: C++

Severity Score

8.8

Related Resources (10)

Url: https://support.apple.com/en-us/HT213761

Url: https://security.gentoo.org/glsa/202401-04

Url: https://access.redhat.com/security/cve/CVE-2023-32373

Url: https://support.apple.com/en-us/HT213764

Url: https://support.apple.com/en-us/HT213765

Url: https://support.apple.com/en-us/HT213762

Url: https://nvd.nist.gov/vuln/detail/CVE-2023-32373

Url: https://support.apple.com/en-us/HT213757

Url: https://support.apple.com/en-us/HT213758

Url: https://www.mend.io/vulnerability-database/CVE-2023-32373

Severity Score

8.8

Weakness Type (CWE)

Use After Free

CWE-416

Top Fix

Upgrade Version

Upgrade to version webkitgtk-2.41.5

Learn More

CVSS v3.1

Base Score:	8.8
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	REQUIRED
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2023-32373

Good to know:

Date: June 22, 2023

Language: C++

Severity Score

Related Resources (10)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

Do you need more information?