Tree_Segment

**Name of the Vulnerable Software and Affected Versions** Safari versions prior to 16.2 iOS versions prior to 16.2 iPadOS versions prior to 16.2 macOS Ventura versions prior to 13.1 **Description** A spoofing issue existed in the handling of URLs, which could lead to address bar spoofing when visiting a malicious website. This issue was addressed with improved input validation. **Recommendations** For Safari versions prior to 16.2, update to Safari 16.2 or later. For iOS versions prior to 16.2, update to iOS 16.2 or later. For iPadOS versions prior to 16.2, update to iPadOS 16.2 or later. For macOS Ventura versions prior to 13.1, update to macOS Ventura 13.1 or later.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 16.4 iPadOS versions prior to 16.4 **Description** A spoofing issue existed in the handling of URLs, which was addressed with improved input validation. Visiting a malicious website may lead to address bar spoofing. **Recommendations** For iOS versions prior to 16.4, update to iOS 16.4 to resolve the issue. For iPadOS versions prior to 16.4, update to iPadOS 16.4 to resolve the issue. As a temporary workaround, consider avoiding visits to untrusted or malicious websites until the update is applied.

**Name of the Vulnerable Software and Affected Versions** macOS Monterey versions 12.6.3 and earlier macOS Ventura versions 13.2 and earlier watchOS versions 9.3 and earlier macOS Big Sur versions 11.7.3 and earlier Safari versions 16.3 and earlier tvOS versions 16.3 and earlier iOS versions 16.3 and earlier iPadOS versions 16.3 and earlier **Description** The issue is related to improved memory handling and may lead to arbitrary code execution when processing maliciously crafted web content. A remote attacker may exploit this to access confidential data, compromise data integrity, and cause a denial of service. **Recommendations** For macOS Monterey versions prior to 12.6.3, update to version 12.6.3 or later. For macOS Ventura versions prior to 13.2, update to version 13.2 or later. For watchOS versions prior to 9.3, update to version 9.3 or later. For macOS Big Sur versions prior to 11.7.3, update to version 11.7.3 or later. For Safari versions prior to 16.3, update to version 16.3 or later. For tvOS versions prior to 16.3, update to version 16.3 or later. For iOS versions prior to 16.3, update to version 16.3 or later. For iPadOS versions prior to 16.3, update to version 16.3 or later.

**Name of the Vulnerable Software and Affected Versions** macOS Monterey versions 12.6.3 and earlier macOS Ventura versions 13.2 and earlier watchOS versions 9.3 and earlier macOS Big Sur versions 11.7.3 and earlier Safari versions 16.3 and earlier tvOS versions 16.3 and earlier iOS versions 16.3 and earlier iPadOS versions 16.3 and earlier **Description** The issue is related to improved memory handling and may lead to arbitrary code execution when processing maliciously crafted web content. It is associated with a buffer overflow in the WPE WebKit and WebKitGTK modules, allowing a remote attacker to access confidential data, compromise its integrity, and cause a denial of service. **Recommendations** For macOS Monterey versions prior to 12.6.3, update to version 12.6.3 or later. For macOS Ventura versions prior to 13.2, update to version 13.2 or later. For watchOS versions prior to 9.3, update to version 9.3 or later. For macOS Big Sur versions prior to 11.7.3, update to version 11.7.3 or later. For Safari versions prior to 16.3, update to version 16.3 or later. For tvOS versions prior to 16.3, update to version 16.3 or later. For iOS versions prior to 16.3, update to version 16.3 or later. For iPadOS versions prior to 16.3, update to version 16.3 or later.