CVE-2023-38572

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jul 27, 2023

Updated: Jan 5, 2024

Summary

CVE-2023-38572 is a vulnerability that allows a website to potentially bypass the Same Origin Policy. This issue was recently addressed with enhanced security checks. Affected versions of iOS, iPadOS, tvOS, macOS Ventura, and Safari are now protected against this vulnerability with the release of updates, including iOS 15.7.8 and iPadOS 15.7.8, iOS 16.6 and iPadOS 16.6, tvOS 16.6, and macOS Ventura 13.5. Users of these operating systems and browsers can mitigate this risk by installing the latest software updates.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sD0XpN
https://www.cve.org/CVERecord?id=CVE-2023-38572
https://nvd.nist.gov/vuln/detail/CVE-2023-38572

Back to Vulnerability Database

CVE-2023-38572

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations