CVE-2023-38611

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Jul 27, 2023

Updated: Jan 5, 2024

Summary

CVE-2023-38611 is a vulnerability affecting multiple Apple operating systems and web browsers. The issue, now resolved, involved insufficient memory handling in the processing of web content. Exploitation of this flaw could result in arbitrary code execution, potentially leading to security breaches or unauthorized access. Affected systems include iOS 16.5 and earlier, iPadOS 16.5 and earlier, tvOS 16.5 and earlier, macOS Ventura 13.4 and earlier, and Safari 16.5 and earlier. Users are recommended to update their software to the latest versions, which address this issue in iOS 16.6, iPadOS 16.6, tvOS 16.6, macOS Ventura 13.5, and Safari 16.6, respectively. watchOS 9.6 users are also advised to update their devices.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database