CVE-2023-32445

Summary

This issue was addressed with improved checks. This issue is fixed in Safari 16.6, watchOS 9.6, iOS 15.7.8 and iPadOS 15.7.8, tvOS 16.6, iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. Processing a document may lead to a cross site scripting attack.

Affected Software

VendorProductVersion RangeStatus
AppleSafariunspecified < 16.6affected
AppletvOSunspecified < 16.6affected
AppleiOS and iPadOSunspecified < 16.6affected
ApplemacOSunspecified < 13.5affected
AppleiOS and iPadOSunspecified < 15.7affected
ApplewatchOSunspecified < 9.6affected

Weaknesses

  • Processing a document may lead to a cross site scripting attack

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References