BIT-jre-2023-41074
See a problem?- Import Source
- https://github.com/bitnami/vulndb/tree/main/data/jre/BIT-jre-2023-41074.json
- JSON Data
- https://api.osv.dev/v1/vulns/BIT-jre-2023-41074
- Aliases
- Published
- 2026-05-08T05:45:35.287Z
- Modified
- 2026-05-08T07:56:38.226877691Z
- Summary
- [none]
- Details
-
The issue was addressed with improved checks. This issue is fixed in tvOS 17, Safari 17, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. Processing web content may lead to arbitrary code execution.
- Database specific
{ "cpes": [ "cpe:2.3:a:bellsoft:libericajre:*:*:*:*:*:*:*:*" ], "severity": "High" }- References
-
- http://seclists.org/fulldisclosure/2023/Oct/10
- http://seclists.org/fulldisclosure/2023/Oct/2
- http://seclists.org/fulldisclosure/2023/Oct/3
- http://seclists.org/fulldisclosure/2023/Oct/8
- http://seclists.org/fulldisclosure/2023/Oct/9
- http://www.openwall.com/lists/oss-security/2023/09/28/3
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4EEMDC5TQAANFH5D77QM34ZTUKXPFGVL/
- https://nvd.nist.gov/vuln/detail/CVE-2023-41074
- https://openjdk.org/groups/vulnerability/advisories/2024-04-16
- https://security.gentoo.org/glsa/202401-33
- https://support.apple.com/en-us/HT213936
- https://support.apple.com/en-us/HT213937
- https://support.apple.com/en-us/HT213938
- https://support.apple.com/en-us/HT213940
- https://support.apple.com/en-us/HT213941
- https://webkitgtk.org/security/WSA-2023-0009.html
- https://www.debian.org/security/2023/dsa-5527
Affected packages
Bitnami / jre
Package
- Name
- jre
- Purl
- pkg:bitnami/jre
Severity
- 8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator