CVE-2023-42883 Information

Description

The issue was addressed with improved memory handling. This issue is fixed in Safari 17.2 macOS Sonoma 14.2 iOS 17.2 and iPadOS 17.2 watchOS 10.2 tvOS 17.2 iOS 16.7.3 and iPadOS 16.7.3. Processing an image may lead to a denial-of-service.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Reference

https://support.apple.com/en-us/HT214039 https://support.apple.com/en-us/HT214035 https://support.apple.com/en-us/HT214034 https://support.apple.com/en-us/HT214040 https://support.apple.com/en-us/HT214036 https://support.apple.com/en-us/HT214041 http://seclists.org/fulldisclosure/2023/Dec/9 http://seclists.org/fulldisclosure/2023/Dec/7 http://seclists.org/fulldisclosure/2023/Dec/8 http://seclists.org/fulldisclosure/2023/Dec/6 http://seclists.org/fulldisclosure/2023/Dec/13 http://seclists.org/fulldisclosure/2023/Dec/12

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

REQUIRED

Confidentiality Impact

UNCHANGED

Integrity Impact

NONE

Availability Impact

NONE

Base Score

HIGH

Base Severity

5.5