vulnerability
Red Hat: CVE-2023-28204: an out-of-bounds read when processing malicious content (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:M/Au:N/C:C/I:N/A:N) | Jun 5, 2023 | Jun 7, 2023 | Mar 27, 2026 |
Severity
7
CVSS
(AV:N/AC:M/Au:N/C:C/I:N/A:N)
Published
Jun 5, 2023
Added
Jun 7, 2023
Modified
Mar 27, 2026
Description
An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, iOS 15.7.6 and iPadOS 15.7.6, Safari 16.5, iOS 16.5 and iPadOS 16.5. Processing web content may disclose sensitive information. Apple is aware of a report that this issue may have been actively exploited.
Solutions
redhat-upgrade-webkit2gtk3redhat-upgrade-webkit2gtk3-debuginforedhat-upgrade-webkit2gtk3-debugsourceredhat-upgrade-webkit2gtk3-develredhat-upgrade-webkit2gtk3-devel-debuginforedhat-upgrade-webkit2gtk3-jscredhat-upgrade-webkit2gtk3-jsc-debuginforedhat-upgrade-webkit2gtk3-jsc-develredhat-upgrade-webkit2gtk3-jsc-devel-debuginfo
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.