An inconsistent user interface issue was addressed with improved state management. This issue is fixed in iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1, Safari 17.1, macOS Sonoma 14.1. Visiting a malicious website may lead to address bar spoofing.
History

Mon, 09 Dec 2024 18:00:00 +0000

Type Values Removed Values Added
First Time appeared Apple ipad Os
Apple iphone Os
Fedoraproject
Fedoraproject fedora
Webkitgtk
Webkitgtk webkitgtk
Wpewebkit
Wpewebkit wpe Webkit
CPEs cpe:2.3:a:webkitgtk:webkitgtk:*:*:*:*:*:*:*:*
cpe:2.3:a:wpewebkit:wpe_webkit:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:ipad_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:14.0:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:40:*:*:*:*:*:*:*
Vendors & Products Apple ipad Os
Apple iphone Os
Fedoraproject
Fedoraproject fedora
Webkitgtk
Webkitgtk webkitgtk
Wpewebkit
Wpewebkit wpe Webkit

Wed, 13 Nov 2024 02:45:00 +0000

Type Values Removed Values Added
First Time appeared Redhat
Redhat enterprise Linux
CPEs cpe:/a:redhat:enterprise_linux:9
Vendors & Products Redhat
Redhat enterprise Linux

Mon, 04 Nov 2024 17:15:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple ios And Ipados
Apple macos
Apple safari
Weaknesses CWE-290
CPEs cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:ios_and_ipados:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
Vendors & Products Apple
Apple ios And Ipados
Apple macos
Apple safari
Metrics cvssV3_1

{'score': 5.4, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published: 2024-02-21T06:41:27.506Z

Updated: 2024-11-04T16:45:42.480Z

Reserved: 2023-09-14T19:05:11.449Z

Link: CVE-2023-42843

cve-icon Vulnrichment

Updated: 2024-08-02T19:30:24.570Z

cve-icon NVD

Status : Analyzed

Published: 2024-02-21T07:15:48.940

Modified: 2024-12-09T17:31:31.750

Link: CVE-2023-42843

cve-icon Redhat

Severity : Moderate

Publid Date: 2024-03-08T00:00:00Z

Links: CVE-2023-42843 - Bugzilla