Lucene search

PRIOn knowledge basePRION:CVE-2023-42917

HistoryNov 30, 2023 - 11:15 p.m.

Memory corruption

2023-11-3023:15:00

PRIOn knowledge base

www.prio-n.com

memory corruption

vulnerability

ios

ipados

macos sonoma

safari

arbitrary code execution

exploited

nvd

7.5 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

54.8%

JSON

A memory corruption vulnerability was addressed with improved locking. This issue is fixed in iOS 17.1.2 and iPadOS 17.1.2, macOS Sonoma 14.1.2, Safari 17.1.2. Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been exploited against versions of iOS before iOS 16.7.1.

CPENameOperatorVersion
ipadoslt17.1.2
iphone_oslt17.1.2
macosge14.0
macoslt14.1.2
safarilt17.1.2

Name	Operator	Version
ipados	lt	17.1.2
iphone_os	lt	17.1.2
macos	ge	14.0
macos	lt	14.1.2
safari	lt	17.1.2

References

seclists.org/fulldisclosure/2023/Dec/12

seclists.org/fulldisclosure/2023/Dec/13

seclists.org/fulldisclosure/2023/Dec/3

seclists.org/fulldisclosure/2023/Dec/4

seclists.org/fulldisclosure/2023/Dec/5

seclists.org/fulldisclosure/2023/Dec/8

seclists.org/fulldisclosure/2024/Jan/35

www.openwall.com/lists/oss-security/2023/12/05/1

lists.fedoraproject.org/archives/list/[email protected]/message/AD2KIHHCUBQC2YYH3FJWAHI5BG3QETOH/

lists.fedoraproject.org/archives/list/[email protected]/message/P5LQS6VEI7VIZNC7QGQ62EOV45R5RJIR/

security.gentoo.org/glsa/202401-04

support.apple.com/en-us/HT214031

support.apple.com/en-us/HT214032

support.apple.com/en-us/HT214033

www.debian.org/security/2023/dsa-5575