Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2023-32370HistorySep 06, 2023 - 2:15 a.m.
CVE-2023-32370
2023-09-0602:15:09
Debian Security Bug Tracker
security-tracker.debian.org
13
logic issue
improved validation
macos ventura 13.3
content security policy
wildcards
unix
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
EPSS
0.001
Percentile
30.9%
A logic issue was addressed with improved validation. This issue is fixed in macOS Ventura 13.3. Content Security Policy to block domains with wildcards may fail.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | webkit2gtk | < 2.40.1-1 | webkit2gtk_2.40.1-1_all.deb |
| Debian | 11 | all | webkit2gtk | < 2.40.1-1~deb11u1 | webkit2gtk_2.40.1-1~deb11u1_all.deb |
| Debian | 999 | all | webkit2gtk | < 2.40.1-1 | webkit2gtk_2.40.1-1_all.deb |
| Debian | 13 | all | webkit2gtk | < 2.40.1-1 | webkit2gtk_2.40.1-1_all.deb |
| Debian | 12 | all | wpewebkit | <= 2.38.6-1 | wpewebkit_2.38.6-1_all.deb |
| Debian | 11 | all | wpewebkit | <= 2.38.6-1~deb11u1 | wpewebkit_2.38.6-1~deb11u1_all.deb |
| Debian | 999 | all | wpewebkit | < 2.40.2-2 | wpewebkit_2.40.2-2_all.deb |
| Debian | 13 | all | wpewebkit | < 2.40.2-2 | wpewebkit_2.40.2-2_all.deb |
Related
cve
cve
CVE-2023-32370
2023-09-06 02:15:09
prion
prion
Input validation
2023-09-06 02:15:00
redhatcve
redhatcve
CVE-2023-32370
2023-09-14 13:54:56
cvelist
cvelist
CVE-2023-32370
2023-09-06 01:36:31
nvd
nvd
CVE-2023-32370
2023-09-06 02:15:09
osv
osv
CVE-2023-32370
2023-09-06 02:15:09
webkit2gtk - security update
2023-05-03 00:00:00
Important: webkit2gtk3 security and bug fix update
2023-11-07 00:00:00
ubuntucve
ubuntucve
CVE-2023-32370
2023-09-06 00:00:00
apple
apple
About the security content of Safari 16.4
2023-03-27 00:00:00
About the security content of iOS 16.4 and iPadOS 16.4
2023-03-27 00:00:00
About the security content of macOS Ventura 13.3
2023-03-27 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-5396-1)
2023-05-04 00:00:00
openSUSE: Security Advisory for webkit2gtk3 (SUSE-SU-2023:3753-1)
2024-03-04 00:00:00
Apple Mac OS X Security Update (HT213670)
2023-03-29 00:00:00
nessus
nessus
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : webkit2gtk3 (SUSE-SU-2023:3753-1)
2023-09-26 00:00:00
Amazon Linux 2 : webkitgtk4 (ALAS-2023-2270)
2023-10-05 00:00:00
CentOS 8 : webkit2gtk3 (CESA-2023:7055)
2023-11-14 00:00:00
amazon
amazon
Important: webkitgtk4
2023-09-27 22:48:00
almalinux
almalinux
Important: webkit2gtk3 security and bug fix update
2023-11-14 00:00:00
Important: webkit2gtk3 security and bug fix update
2023-11-07 00:00:00
oraclelinux
oraclelinux
webkit2gtk3 security and bug fix update
2023-11-11 00:00:00
webkit2gtk3 security and bug fix update
2023-11-17 00:00:00
gentoo
gentoo
WebKitGTK+: Multiple Vulnerabilities
2024-01-05 00:00:00
redhat
redhat
(RHSA-2023:7055) Important: webkit2gtk3 security and bug fix update
2023-11-14 08:44:13
(RHSA-2023:6535) Important: webkit2gtk3 security and bug fix update
2023-11-07 06:07:56
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
EPSS
0.001
Percentile
30.9%
Related for DEBIANCVE:CVE-2023-32370