CVE-2022-48503
Description
The issue was addressed with improved bounds checks. This issue is fixed in tvOS 15.6, watchOS 8.7, iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5, Safari 15.6. Processing web content may lead to arbitrary code execution.
Risk Information
Base Score
8.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.325
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2022-32861,CVE-2022-32885,CVE-2022-48503 are affected in Apple Safari 15.5 | Windows |
| Multiple vulnerabilities are fixed in Mac OS - Monterey 12.5 (Software Update) - AutoReboot | Mac |
| Multiple vulnerabilities are fixed in Mac OS - Monterey 12.5 - AutoReboot | Mac |
| Multiple vulnerabilities are fixed in Mac OS - Monterey 12.5.1 (Software Update) - AutoReboot | Mac |
| Multiple vulnerabilities are fixed in Mac OS - Monterey 12.5.1 - AutoReboot | Mac |
| Vulnerabilities CVE-2022-32885,CVE-2022-48503 are affected in Apple Safari for MAC 15.5 | Mac |
| Vulnerabilities CVE-2022-32861,CVE-2022-32885,CVE-2022-48503 are affected in Apple Safari for MAC 15.5 | Mac |
| SUSE-SU-2023:3237-1(SUSE Linux Enterprise Server 12 SP5 ) libjavascriptcoregtk-4_0-18-2.40.5-2.146.1.x86_64.rpm | Linux |
| SUSE-SU-2023:3237-1(SUSE Linux Enterprise Server 12 SP5 ) libjavascriptcoregtk-4_0-18-debuginfo-2.40.5-2.146.1.x86_64.rpm | Linux |
| SUSE-SU-2023:3237-1(SUSE Linux Enterprise Server 12 SP5 ) libwebkit2gtk-4_0-37-2.40.5-2.146.1.x86_64.rpm | Linux |
| SUSE-SU-2023:3237-1(SUSE Linux Enterprise Server 12 SP5 ) libwebkit2gtk-4_0-37-debuginfo-2.40.5-2.146.1.x86_64.rpm | Linux |
| SUSE-SU-2023:3237-1(SUSE Linux Enterprise Server 12 SP5 ) libwebkit2gtk3-lang-2.40.5-2.146.1.noarch.rpm | Linux |
| SUSE-SU-2023:3237-1(SUSE Linux Enterprise Server 12 SP5 ) typelib-1_0-JavaScriptCore-4_0-2.40.5-2.146.1.x86_64.rpm | Linux |
| SUSE-SU-2023:3237-1(SUSE Linux Enterprise Server 12 SP5 ) typelib-1_0-WebKit2-4_0-2.40.5-2.146.1.x86_64.rpm | Linux |
| SUSE-SU-2023:3237-1(SUSE Linux Enterprise Server 12 SP5 ) typelib-1_0-WebKit2WebExtension-4_0-2.40.5-2.146.1.x86_64.rpm | Linux |
| SUSE-SU-2023:3237-1(SUSE Linux Enterprise Server 12 SP5 ) webkit2gtk-4_0-injected-bundles-2.40.5-2.146.1.x86_64.rpm | Linux |
| SUSE-SU-2023:3237-1(SUSE Linux Enterprise Server 12 SP5 ) webkit2gtk-4_0-injected-bundles-debuginfo-2.40.5-2.146.1.x86_64.rpm | Linux |
| SUSE-SU-2023:3237-1(SUSE Linux Enterprise Server 12 SP5 ) webkit2gtk3-debugsource-2.40.5-2.146.1.x86_64.rpm | Linux |
| SUSE-SU-2023:3419-1(Basesystem Module 15-SP4 ) libjavascriptcoregtk-4_0-18-debuginfo-2.40.5-150400.4.45.3.x86_64.rpm | Linux |
| SUSE-SU-2023:3419-1(Desktop Applications Module 15-SP4 ) libjavascriptcoregtk-4_1-0-2.40.5-150400.4.45.3.x86_64.rpm | Linux |
| SUSE-SU-2023:3419-1(Desktop Applications Module 15-SP4 ) libjavascriptcoregtk-4_1-0-debuginfo-2.40.5-150400.4.45.3.x86_64.rpm | Linux |
| SUSE-SU-2023:3419-1(Development Tools Module 15-SP4 ) libjavascriptcoregtk-6_0-1-2.40.5-150400.4.45.3.x86_64.rpm | Linux |
| SUSE-SU-2023:3419-1(Development Tools Module 15-SP4 ) libjavascriptcoregtk-6_0-1-debuginfo-2.40.5-150400.4.45.3.x86_64.rpm | Linux |
| SUSE-SU-2023:3419-1(Basesystem Module 15-SP4 ) libwebkit2gtk-4_0-37-debuginfo-2.40.5-150400.4.45.3.x86_64.rpm | Linux |
| SUSE-SU-2023:3419-1(Desktop Applications Module 15-SP4 ) libwebkit2gtk-4_1-0-2.40.5-150400.4.45.3.x86_64.rpm | Linux |
| SUSE-SU-2023:3419-1(Desktop Applications Module 15-SP4 ) libwebkit2gtk-4_1-0-debuginfo-2.40.5-150400.4.45.3.x86_64.rpm | Linux |
| SUSE-SU-2023:3419-1(Development Tools Module 15-SP4 ) libwebkitgtk-6_0-4-2.40.5-150400.4.45.3.x86_64.rpm | Linux |
| SUSE-SU-2023:3419-1(Development Tools Module 15-SP4 ) libwebkitgtk-6_0-4-debuginfo-2.40.5-150400.4.45.3.x86_64.rpm | Linux |
| SUSE-SU-2023:3419-1(Desktop Applications Module 15-SP4 ) typelib-1_0-JavaScriptCore-4_1-2.40.5-150400.4.45.3.x86_64.rpm | Linux |
| SUSE-SU-2023:3419-1(Desktop Applications Module 15-SP4 ) typelib-1_0-WebKit2-4_1-2.40.5-150400.4.45.3.x86_64.rpm | Linux |
| SUSE-SU-2023:3419-1(Desktop Applications Module 15-SP4 ) typelib-1_0-WebKit2WebExtension-4_1-2.40.5-150400.4.45.3.x86_64.rpm | Linux |
| SUSE-SU-2023:3419-1(Desktop Applications Module 15-SP4 ) webkit2gtk-4_1-injected-bundles-2.40.5-150400.4.45.3.x86_64.rpm | Linux |
| SUSE-SU-2023:3419-1(Desktop Applications Module 15-SP4 ) webkit2gtk-4_1-injected-bundles-debuginfo-2.40.5-150400.4.45.3.x86_64.rpm | Linux |
| SUSE-SU-2023:3419-1(Desktop Applications Module 15-SP4 ) webkit2gtk3-debugsource-2.40.5-150400.4.45.3.x86_64.rpm | Linux |
| SUSE-SU-2023:3419-1(Desktop Applications Module 15-SP4 ) webkit2gtk3-devel-2.40.5-150400.4.45.3.x86_64.rpm | Linux |
| SUSE-SU-2023:3419-1(Development Tools Module 15-SP4 ) webkit2gtk4-debugsource-2.40.5-150400.4.45.3.x86_64.rpm | Linux |
| SUSE-SU-2023:3419-1(Development Tools Module 15-SP4 ) webkitgtk-6_0-injected-bundles-2.40.5-150400.4.45.3.x86_64.rpm | Linux |
| SUSE-SU-2023:3419-1(Basesystem Module 15-SP5 ) libjavascriptcoregtk-4_0-18-2.40.5-150400.4.45.3.x86_64.rpm | Linux |
| SUSE-SU-2023:3419-1(Basesystem Module 15-SP5 ) libjavascriptcoregtk-4_0-18-debuginfo-2.40.5-150400.4.45.3.x86_64_15_SP5.rpm | Linux |
| SUSE-SU-2023:3419-1(Desktop Applications Module 15-SP5 ) libjavascriptcoregtk-4_1-0-2.40.5-150400.4.45.3.x86_64_15_SP5.rpm | Linux |
| SUSE-SU-2023:3419-1(Desktop Applications Module 15-SP5 ) libjavascriptcoregtk-4_1-0-debuginfo-2.40.5-150400.4.45.3.x86_64_15_SP5.rpm | Linux |
| SUSE-SU-2023:3419-1(Development Tools Module 15-SP5 ) libjavascriptcoregtk-6_0-1-2.40.5-150400.4.45.3.x86_64_15_SP5.rpm | Linux |
| SUSE-SU-2023:3419-1(Development Tools Module 15-SP5 ) libjavascriptcoregtk-6_0-1-debuginfo-2.40.5-150400.4.45.3.x86_64_15_SP5.rpm | Linux |
| SUSE-SU-2023:3419-1(Basesystem Module 15-SP5 ) libwebkit2gtk-4_0-37-2.40.5-150400.4.45.3.x86_64.rpm | Linux |
| SUSE-SU-2023:3419-1(Basesystem Module 15-SP5 ) libwebkit2gtk-4_0-37-debuginfo-2.40.5-150400.4.45.3.x86_64_15_SP5.rpm | Linux |
| SUSE-SU-2023:3419-1(Desktop Applications Module 15-SP5 ) libwebkit2gtk-4_1-0-2.40.5-150400.4.45.3.x86_64_15_SP5.rpm | Linux |
| SUSE-SU-2023:3419-1(Desktop Applications Module 15-SP5 ) libwebkit2gtk-4_1-0-debuginfo-2.40.5-150400.4.45.3.x86_64_15_SP5.rpm | Linux |
| SUSE-SU-2023:3419-1(Development Tools Module 15-SP5 ) libwebkitgtk-6_0-4-2.40.5-150400.4.45.3.x86_64_15_SP5.rpm | Linux |
| SUSE-SU-2023:3419-1(Development Tools Module 15-SP5 ) libwebkitgtk-6_0-4-debuginfo-2.40.5-150400.4.45.3.x86_64_15_SP5.rpm | Linux |
| SUSE-SU-2023:3419-1(Basesystem Module 15-SP5 ) typelib-1_0-JavaScriptCore-4_0-2.40.5-150400.4.45.3.x86_64.rpm | Linux |
| SUSE-SU-2023:3419-1(Desktop Applications Module 15-SP5 ) typelib-1_0-JavaScriptCore-4_1-2.40.5-150400.4.45.3.x86_64_15_SP5.rpm | Linux |
| SUSE-SU-2023:3419-1(Basesystem Module 15-SP5 ) typelib-1_0-WebKit2-4_0-2.40.5-150400.4.45.3.x86_64.rpm | Linux |
| SUSE-SU-2023:3419-1(Desktop Applications Module 15-SP5 ) typelib-1_0-WebKit2-4_1-2.40.5-150400.4.45.3.x86_64_15_SP5.rpm | Linux |
| SUSE-SU-2023:3419-1(Basesystem Module 15-SP5 ) typelib-1_0-WebKit2WebExtension-4_0-2.40.5-150400.4.45.3.x86_64.rpm | Linux |
| SUSE-SU-2023:3419-1(Desktop Applications Module 15-SP5 ) typelib-1_0-WebKit2WebExtension-4_1-2.40.5-150400.4.45.3.x86_64_15_SP5.rpm | Linux |
| SUSE-SU-2023:3419-1(Basesystem Module 15-SP5 ) webkit2gtk-4_0-injected-bundles-2.40.5-150400.4.45.3.x86_64.rpm | Linux |
| SUSE-SU-2023:3419-1(Basesystem Module 15-SP5 ) webkit2gtk-4_0-injected-bundles-debuginfo-2.40.5-150400.4.45.3.x86_64.rpm | Linux |
| SUSE-SU-2023:3419-1(Desktop Applications Module 15-SP5 ) webkit2gtk-4_1-injected-bundles-2.40.5-150400.4.45.3.x86_64_15_SP5.rpm | Linux |
| SUSE-SU-2023:3419-1(Desktop Applications Module 15-SP5 ) webkit2gtk-4_1-injected-bundles-debuginfo-2.40.5-150400.4.45.3.x86_64_15_SP5.rpm | Linux |
| SUSE-SU-2023:3419-1(Desktop Applications Module 15-SP5 ) webkit2gtk3-debugsource-2.40.5-150400.4.45.3.x86_64_15_SP5.rpm | Linux |
| SUSE-SU-2023:3419-1(Desktop Applications Module 15-SP5 ) webkit2gtk3-devel-2.40.5-150400.4.45.3.x86_64_15_SP5.rpm | Linux |
| SUSE-SU-2023:3419-1(Basesystem Module 15-SP5 ) webkit2gtk3-soup2-debugsource-2.40.5-150400.4.45.3.x86_64.rpm | Linux |
| SUSE-SU-2023:3419-1(Basesystem Module 15-SP5 ) webkit2gtk3-soup2-devel-2.40.5-150400.4.45.3.x86_64.rpm | Linux |
| SUSE-SU-2023:3419-1(Development Tools Module 15-SP5 ) webkit2gtk4-debugsource-2.40.5-150400.4.45.3.x86_64_15_SP5.rpm | Linux |
| SUSE-SU-2023:3419-1(Development Tools Module 15-SP5 ) webkitgtk-6_0-injected-bundles-2.40.5-150400.4.45.3.x86_64_15_SP5.rpm | Linux |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-608134 | Mac OS - Monterey 12.7.6 (Software Update) - AutoReboot (CVE-2024-27877) |
| PATCH-608134 | Mac OS - Monterey 12.7.6 (Software Update) - AutoReboot (CVE-2024-27877) |
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
| PATCH-612606 | Apple Safari for MAC (MacOS Sequoia) (26.1) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234