PT-2023-21629 · Apple · Safari+5

Dohyun Lee

Published

2023-03-27

Updated

2024-12-12

CVE-2023-28201

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions macOS Ventura versions prior to 13.3 Safari versions prior to 16.4 iOS versions prior to 16.4 iPadOS versions prior to 16.4 iOS versions prior to 15.7.4 iPadOS versions prior to 15.7.4 tvOS versions prior to 16.4

Description A remote user may be able to cause unexpected app termination or arbitrary code execution due to an issue that was addressed with improved state management.

Recommendations For macOS Ventura versions prior to 13.3, update to macOS Ventura 13.3. For Safari versions prior to 16.4, update to Safari 16.4. For iOS versions prior to 16.4, update to iOS 16.4. For iPadOS versions prior to 16.4, update to iPadOS 16.4. For iOS versions prior to 15.7.4, update to iOS 15.7.4. For iPadOS versions prior to 15.7.4, update to iPadOS 15.7.4. For tvOS versions prior to 16.4, update to tvOS 16.4.

Fix

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-362

Related Identifiers

CVE-2023-28201

Affected Products

Apple Macos

Safari

Ios

Ipados

Macos Ventura

Tvos

PT-2023-21629 · Apple · Safari+5

CVE-2023-28201

Weakness Enumeration

Related Identifiers

Affected Products

References · 8