Liberica JDK21.0.3+10Security Advisory
Search Cve

CVE-2023-41993

Published: September 21, 2023Last modified: April 23, 2024

Description

The issue was addressed with improved checks. This issue is fixed in Safari 16.6.1, macOS Ventura 13.6, OS 17.0.1 and iPadOS 17.0.1, iOS 16.7 and iPadOS 16.7. Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 16.7.

Severity score breakdown

ParameterValue
Base score9.8
Attack VectorNETWORK
Attack complexityLOW
Privileges requiredNONE
User interactionNONE
ScopeUNCHANGED
ConfidentialityHIGH
Integrity impactHIGH
Availability impactHIGH
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Status

ProductReleasePackageStatus
Liberica JDK8jdk-fullFixed (8u412+9)
11jdk-fullFixed (11.0.23+10)
17jdk-fullFixed (17.0.11+10)
21jdk-fullFixed (21.0.3+10)
22jdk-fullFixed (22.0.1+10)

References

Published BELL-SAs

ON THIS PAGE