CVE-2023-42917

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-42917

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-42917.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2023-42917

Downstream

DEBIAN-CVE-2023-42917

DSA-5575-1

MINI-6mwf-fj63-vm4q

RHSA-2023:7715

RHSA-2023:7716

RHSA-2024:2126

RHSA-2024:2982

RHSA-2024:8492

RHSA-2024:8496

RHSA-2024:9646

RHSA-2024:9653

RHSA-2024:9679

RHSA-2024:9680

RHSA-2025:10364

SUSE-SU-2023:4824-1

SUSE-SU-2023:4827-1

SUSE-SU-2023:4828-1

SUSE-SU-2023:4829-1

UBUNTU-CVE-2023-42917

USN-6545-1

Related

Published

2023-11-30T23:15:07Z

Modified

2025-08-09T19:01:27Z

Severity

8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

A memory corruption vulnerability was addressed with improved locking. This issue is fixed in iOS 17.1.2 and iPadOS 17.1.2, macOS Sonoma 14.1.2, Safari 17.1.2. Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been exploited against versions of iOS before iOS 16.7.1.

References

Affected packages