Home > Vulnerability Database > CVE-2023-32435

Mend.io Vulnerability Database

CVE-2023-32435

Date: June 22, 2023

A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.3, Safari 16.4, iOS 16.4 and iPadOS 16.4, iOS 15.7.7 and iPadOS 15.7.7. Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.7.

Severity Score

8.8

Related Resources (9)

Url: http://www.openwall.com/lists/oss-security/2023/06/29/1

Url: https://nvd.nist.gov/vuln/detail/CVE-2023-32435

Url: http://seclists.org/fulldisclosure/2023/Jul/5

Url: https://support.apple.com/en-us/HT213670

Url: https://support.apple.com/en-us/HT213671

Url: https://support.apple.com/en-us/HT213676

Url: https://access.redhat.com/security/cve/CVE-2023-32435

Url: https://support.apple.com/en-us/HT213811

Url: https://www.mend.io/vulnerability-database/CVE-2023-32435

Severity Score

8.8

Weakness Type (CWE)

Out-of-bounds Write

CWE-787

CVSS v3.1

Base Score:	8.8
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	REQUIRED
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2023-32435

Date: June 22, 2023

Severity Score

Related Resources (9)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?