The issue was addressed with improved bounds checks. This issue is fixed in tvOS 15.6, watchOS 8.7, iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5, Safari 15.6. Processing web content may lead to arbitrary code execution.

The remote SUSE Linux SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3419-1 advisory.

  - The issue was addressed with improved bounds checks. This issue is fixed in tvOS 15.6, watchOS 8.7, iOS     15.6 and iPadOS 15.6, macOS Monterey 12.5, Safari 15.6. Processing web content may lead to arbitrary code     execution. (CVE-2022-48503)

  - A memory corruption issue was addressed with improved state management. This issue is fixed in macOS     Ventura 13.3, Safari 16.4, iOS 16.4 and iPadOS 16.4, iOS 15.7.7 and iPadOS 15.7.7. Processing web content     may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively     exploited against versions of iOS released before iOS 15.7. (CVE-2023-32435)

  - A type confusion issue was addressed with improved checks. This issue is fixed in iOS 16.5.1 and iPadOS     16.5.1, iOS 15.7.7 and iPadOS 15.7.7, macOS Ventura 13.4.1, Safari 16.5.1. Processing maliciously crafted     web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been     actively exploited. (CVE-2023-32439)

  - The issue was addressed with improved checks. This issue is fixed in iOS 15.7.8 and iPadOS 15.7.8, iOS     16.6 and iPadOS 16.6, tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. Processing web content may     disclose sensitive information. (CVE-2023-38133)

  - The issue was addressed with improved checks. This issue is fixed in iOS 15.7.8 and iPadOS 15.7.8, iOS     16.6 and iPadOS 16.6, tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. A website may be able to     bypass Same Origin Policy. (CVE-2023-38572)

  - A logic issue was addressed with improved restrictions. This issue is fixed in iOS 16.6 and iPadOS 16.6,     watchOS 9.6, tvOS 16.6, macOS Ventura 13.5. Processing web content may lead to arbitrary code execution.
    (CVE-2023-38592)

  - The issue was addressed with improved checks. This issue is fixed in iOS 15.7.8 and iPadOS 15.7.8, iOS     16.6 and iPadOS 16.6, tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. Processing web content may     lead to arbitrary code execution. (CVE-2023-38594)

  - The issue was addressed with improved checks. This issue is fixed in iOS 16.6 and iPadOS 16.6, tvOS 16.6,     macOS Ventura 13.5, Safari 16.6, watchOS 9.6. Processing web content may lead to arbitrary code execution.
    (CVE-2023-38595, CVE-2023-38600)

  - The issue was addressed with improved checks. This issue is fixed in iOS 15.7.8 and iPadOS 15.7.8, iOS     16.6 and iPadOS 16.6, macOS Ventura 13.5, Safari 16.6. Processing web content may lead to arbitrary code     execution. (CVE-2023-38597)

  - A logic issue was addressed with improved state management. This issue is fixed in Safari 16.6, watchOS     9.6, iOS 15.7.8 and iPadOS 15.7.8, tvOS 16.6, iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. A website may     be able to track sensitive user information. (CVE-2023-38599)

  - The issue was addressed with improved memory handling. This issue is fixed in iOS 16.6 and iPadOS 16.6,     tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. Processing web content may lead to arbitrary code     execution. (CVE-2023-38611)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote SUSE Linux SLES15 / SLES_SAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3300-1 advisory.

  - The issue was addressed with improved bounds checks. This issue is fixed in tvOS 15.6, watchOS 8.7, iOS     15.6 and iPadOS 15.6, macOS Monterey 12.5, Safari 15.6. Processing web content may lead to arbitrary code     execution. (CVE-2022-48503)

  - An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 9.5,     tvOS 16.5, macOS Ventura 13.4, iOS 15.7.6 and iPadOS 15.7.6, Safari 16.5, iOS 16.5 and iPadOS 16.5.
    Processing web content may disclose sensitive information. Apple is aware of a report that this issue may     have been actively exploited. (CVE-2023-28204)

  - A use-after-free issue was addressed with improved memory management. This issue is fixed in watchOS 9.5,     tvOS 16.5, macOS Ventura 13.4, iOS 15.7.6 and iPadOS 15.7.6, Safari 16.5, iOS 16.5 and iPadOS 16.5.
    Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a     report that this issue may have been actively exploited. (CVE-2023-32373)

  - A memory corruption issue was addressed with improved state management. This issue is fixed in macOS     Ventura 13.3, Safari 16.4, iOS 16.4 and iPadOS 16.4, iOS 15.7.7 and iPadOS 15.7.7. Processing web content     may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively     exploited against versions of iOS released before iOS 15.7. (CVE-2023-32435)

  - A type confusion issue was addressed with improved checks. This issue is fixed in iOS 16.5.1 and iPadOS     16.5.1, iOS 15.7.7 and iPadOS 15.7.7, macOS Ventura 13.4.1, Safari 16.5.1. Processing maliciously crafted     web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been     actively exploited. (CVE-2023-32439)

  - The issue was addressed with improved checks. This issue is fixed in iOS 15.7.8 and iPadOS 15.7.8, iOS     16.6 and iPadOS 16.6, tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. Processing web content may     disclose sensitive information. (CVE-2023-38133)

  - The issue was addressed with improved checks. This issue is fixed in iOS 15.7.8 and iPadOS 15.7.8, iOS     16.6 and iPadOS 16.6, tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. A website may be able to     bypass Same Origin Policy. (CVE-2023-38572)

  - A logic issue was addressed with improved restrictions. This issue is fixed in iOS 16.6 and iPadOS 16.6,     watchOS 9.6, tvOS 16.6, macOS Ventura 13.5. Processing web content may lead to arbitrary code execution.
    (CVE-2023-38592)

  - The issue was addressed with improved checks. This issue is fixed in iOS 15.7.8 and iPadOS 15.7.8, iOS     16.6 and iPadOS 16.6, tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. Processing web content may     lead to arbitrary code execution. (CVE-2023-38594)

  - The issue was addressed with improved checks. This issue is fixed in iOS 16.6 and iPadOS 16.6, tvOS 16.6,     macOS Ventura 13.5, Safari 16.6, watchOS 9.6. Processing web content may lead to arbitrary code execution.
    (CVE-2023-38595, CVE-2023-38600)

  - The issue was addressed with improved checks. This issue is fixed in iOS 15.7.8 and iPadOS 15.7.8, iOS     16.6 and iPadOS 16.6, macOS Ventura 13.5, Safari 16.6. Processing web content may lead to arbitrary code     execution. (CVE-2023-38597)

  - A logic issue was addressed with improved state management. This issue is fixed in Safari 16.6, watchOS     9.6, iOS 15.7.8 and iPadOS 15.7.8, tvOS 16.6, iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. A website may     be able to track sensitive user information. (CVE-2023-38599)

  - The issue was addressed with improved memory handling. This issue is fixed in iOS 16.6 and iPadOS 16.6,     tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. Processing web content may lead to arbitrary code     execution. (CVE-2023-38611)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote SUSE Linux SLED12 / SLED_SAP12 / SLES12 / SLES_SAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3237-1 advisory.

  - Processing web content may lead to arbitrary code execution (CVE-2022-48503)

  - A memory corruption issue was addressed with improved state management. This issue is fixed in macOS     Ventura 13.3, Safari 16.4, iOS 16.4 and iPadOS 16.4, iOS 15.7.7 and iPadOS 15.7.7. Processing web content     may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively     exploited against versions of iOS released before iOS 15.7. (CVE-2023-32435)

  - A type confusion issue was addressed with improved checks. This issue is fixed in iOS 16.5.1 and iPadOS     16.5.1, iOS 15.7.7 and iPadOS 15.7.7, macOS Ventura 13.4.1, Safari 16.5.1. Processing maliciously crafted     web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been     actively exploited. (CVE-2023-32439)

  - The issue was addressed with improved checks. This issue is fixed in iOS 15.7.8 and iPadOS 15.7.8, iOS     16.6 and iPadOS 16.6, tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. Processing web content may     disclose sensitive information. (CVE-2023-38133)

  - The issue was addressed with improved checks. This issue is fixed in iOS 15.7.8 and iPadOS 15.7.8, iOS     16.6 and iPadOS 16.6, tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. A website may be able to     bypass Same Origin Policy. (CVE-2023-38572)

  - A logic issue was addressed with improved restrictions. This issue is fixed in iOS 16.6 and iPadOS 16.6,     watchOS 9.6, tvOS 16.6, macOS Ventura 13.5. Processing web content may lead to arbitrary code execution.
    (CVE-2023-38592)

  - The issue was addressed with improved checks. This issue is fixed in iOS 15.7.8 and iPadOS 15.7.8, iOS     16.6 and iPadOS 16.6, tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. Processing web content may     lead to arbitrary code execution. (CVE-2023-38594)

  - The issue was addressed with improved checks. This issue is fixed in iOS 16.6 and iPadOS 16.6, tvOS 16.6,     macOS Ventura 13.5, Safari 16.6, watchOS 9.6. Processing web content may lead to arbitrary code execution.
    (CVE-2023-38595, CVE-2023-38600)

  - The issue was addressed with improved checks. This issue is fixed in iOS 15.7.8 and iPadOS 15.7.8, iOS     16.6 and iPadOS 16.6, macOS Ventura 13.5, Safari 16.6. Processing web content may lead to arbitrary code     execution. (CVE-2023-38597)

  - A logic issue was addressed with improved state management. This issue is fixed in Safari 16.6, watchOS     9.6, iOS 15.7.8 and iPadOS 15.7.8, tvOS 16.6, iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. A website may     be able to track sensitive user information. (CVE-2023-38599)

  - The issue was addressed with improved memory handling. This issue is fixed in iOS 16.6 and iPadOS 16.6,     tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. Processing web content may lead to arbitrary code     execution. (CVE-2023-38611)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote SUSE Linux SLES15 / SLES_SAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3233-1 advisory.

  - Processing web content may lead to arbitrary code execution (CVE-2022-48503)

  - A memory corruption issue was addressed with improved state management. This issue is fixed in macOS     Ventura 13.3, Safari 16.4, iOS 16.4 and iPadOS 16.4, iOS 15.7.7 and iPadOS 15.7.7. Processing web content     may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively     exploited against versions of iOS released before iOS 15.7. (CVE-2023-32435)

  - A type confusion issue was addressed with improved checks. This issue is fixed in iOS 16.5.1 and iPadOS     16.5.1, iOS 15.7.7 and iPadOS 15.7.7, macOS Ventura 13.4.1, Safari 16.5.1. Processing maliciously crafted     web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been     actively exploited. (CVE-2023-32439)

  - The issue was addressed with improved checks. This issue is fixed in iOS 15.7.8 and iPadOS 15.7.8, iOS     16.6 and iPadOS 16.6, tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. Processing web content may     disclose sensitive information. (CVE-2023-38133)

  - The issue was addressed with improved checks. This issue is fixed in iOS 15.7.8 and iPadOS 15.7.8, iOS     16.6 and iPadOS 16.6, tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. A website may be able to     bypass Same Origin Policy. (CVE-2023-38572)

  - A logic issue was addressed with improved restrictions. This issue is fixed in iOS 16.6 and iPadOS 16.6,     watchOS 9.6, tvOS 16.6, macOS Ventura 13.5. Processing web content may lead to arbitrary code execution.
    (CVE-2023-38592)

  - The issue was addressed with improved checks. This issue is fixed in iOS 15.7.8 and iPadOS 15.7.8, iOS     16.6 and iPadOS 16.6, tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. Processing web content may     lead to arbitrary code execution. (CVE-2023-38594)

  - The issue was addressed with improved checks. This issue is fixed in iOS 16.6 and iPadOS 16.6, tvOS 16.6,     macOS Ventura 13.5, Safari 16.6, watchOS 9.6. Processing web content may lead to arbitrary code execution.
    (CVE-2023-38595, CVE-2023-38600)

  - The issue was addressed with improved checks. This issue is fixed in iOS 15.7.8 and iPadOS 15.7.8, iOS     16.6 and iPadOS 16.6, macOS Ventura 13.5, Safari 16.6. Processing web content may lead to arbitrary code     execution. (CVE-2023-38597)

  - A logic issue was addressed with improved state management. This issue is fixed in Safari 16.6, watchOS     9.6, iOS 15.7.8 and iPadOS 15.7.8, tvOS 16.6, iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. A website may     be able to track sensitive user information. (CVE-2023-38599)

  - The issue was addressed with improved memory handling. This issue is fixed in iOS 16.6 and iPadOS 16.6,     tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. Processing web content may lead to arbitrary code     execution. (CVE-2023-38611)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of webkitgtk4 installed on the remote host is prior to 2.38.5-3. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-2141 advisory.

  - A memory corruption issue was addressed with improved state management. This issue is fixed in Safari     16.4, iOS 16.4 and iPadOS 16.4, macOS Ventura 13.3, iOS 15.7.7 and iPadOS 15.7.7. Processing web content     may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively     exploited against versions of iOS released before iOS 15.7. (CVE-2023-32435)

  - A type confusion issue was addressed with improved checks. This issue is fixed in iOS 16.5.1 and iPadOS     16.5.1, Safari 16.5.1, macOS Ventura 13.4.1, iOS 15.7.7 and iPadOS 15.7.7. Processing maliciously crafted     web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been     actively exploited. (CVE-2023-32439)

  - Processing web content may lead to arbitrary code execution (CVE-2022-48503)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2023:2834 advisory.

  - A buffer overflow issue was addressed with improved memory handling. This issue is fixed in Safari 16, iOS     16, iOS 15.7 and iPadOS 15.7. Processing maliciously crafted web content may lead to arbitrary code     execution. (CVE-2022-32886)

  - An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in macOS Big     Sur 11.7, macOS Ventura 13, iOS 16, iOS 15.7 and iPadOS 15.7, watchOS 9, macOS Monterey 12.6, tvOS 16.
    Processing maliciously crafted web content may lead to arbitrary code execution. (CVE-2022-32888)

  - A correctness issue in the JIT was addressed with improved checks. This issue is fixed in tvOS 16.1, iOS     15.7.1 and iPadOS 15.7.1, macOS Ventura 13, watchOS 9.1, Safari 16.1, iOS 16.1 and iPadOS 16. Processing     maliciously crafted web content may disclose internal states of the app. (CVE-2022-32923)

  - The issue was addressed with improved UI handling. This issue is fixed in tvOS 16.1, macOS Ventura 13,     watchOS 9.1, Safari 16.1, iOS 16.1 and iPadOS 16. Visiting a malicious website may lead to user interface     spoofing. (CVE-2022-42799)

  - A type confusion issue was addressed with improved memory handling. This issue is fixed in tvOS 16.1,     macOS Ventura 13, watchOS 9.1, Safari 16.1, iOS 16.1 and iPadOS 16. Processing maliciously crafted web     content may lead to arbitrary code execution. (CVE-2022-42823)

  - A logic issue was addressed with improved state management. This issue is fixed in tvOS 16.1, macOS     Ventura 13, watchOS 9.1, Safari 16.1, iOS 16.1 and iPadOS 16. Processing maliciously crafted web content     may disclose sensitive user information. (CVE-2022-42824)

  - A use after free issue was addressed with improved memory management. This issue is fixed in macOS Ventura     13, iOS 16.1 and iPadOS 16, Safari 16.1. Processing maliciously crafted web content may lead to arbitrary     code execution. (CVE-2022-42826)

  - The issue was addressed with improved memory handling. This issue is fixed in Safari 16.2, tvOS 16.2,     macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing     maliciously crafted web content may result in the disclosure of process memory. (CVE-2022-42852)

  - A memory corruption issue was addressed with improved state management. This issue is fixed in Safari     16.2, tvOS 16.2, macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing maliciously crafted     web content may lead to arbitrary code execution. (CVE-2022-42863, CVE-2022-46699)

  - A use after free issue was addressed with improved memory management. This issue is fixed in Safari 16.2,     tvOS 16.2, macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing maliciously crafted web     content may lead to arbitrary code execution. (CVE-2022-42867)

  - A memory consumption issue was addressed with improved memory handling. This issue is fixed in Safari     16.2, tvOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and iPadOS 16.2, watchOS 9.2.
    Processing maliciously crafted web content may lead to arbitrary code execution. (CVE-2022-46691)

  - A logic issue was addressed with improved state management. This issue is fixed in Safari 16.2, tvOS 16.2,     iCloud for Windows 14.1, iOS 15.7.2 and iPadOS 15.7.2, macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2,     watchOS 9.2. Processing maliciously crafted web content may bypass Same Origin Policy. (CVE-2022-46692)

  - A logic issue was addressed with improved checks. This issue is fixed in Safari 16.2, tvOS 16.2, iCloud     for Windows 14.1, macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing maliciously     crafted web content may disclose sensitive user information. (CVE-2022-46698)

  - A memory corruption issue was addressed with improved input validation. This issue is fixed in Safari     16.2, tvOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and iPadOS 16.2, watchOS 9.2.
    Processing maliciously crafted web content may lead to arbitrary code execution. (CVE-2022-46700)

  - The issue was addressed with improved bounds checks. This issue is fixed in tvOS 15.6, watchOS 8.7, iOS     15.6 and iPadOS 15.6, macOS Monterey 12.5, Safari 15.6. Processing web content may lead to arbitrary code     execution. (CVE-2022-48503)

  - The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.6.3, macOS     Ventura 13.2, watchOS 9.3, macOS Big Sur 11.7.3, Safari 16.3, tvOS 16.3, iOS 16.3 and iPadOS 16.3.
    Processing maliciously crafted web content may lead to arbitrary code execution. (CVE-2023-23517,     CVE-2023-23518)

  - A use-after-free vulnerability in WebCore::RenderLayer::addChild in WebKitGTK before 2.36.8 allows     attackers to execute code remotely. (CVE-2023-25358)

  - A use-after-free vulnerability in WebCore::RenderLayer::renderer in WebKitGTK before 2.36.8 allows     attackers to execute code remotely. (CVE-2023-25360)

  - A use-after-free vulnerability in WebCore::RenderLayer::setNextSibling in WebKitGTK before 2.36.8 allows     attackers to execute code remotely. (CVE-2023-25361)

  - A use-after-free vulnerability in WebCore::RenderLayer::repaintBlockSelectionGaps in WebKitGTK before     2.36.8 allows attackers to execute code remotely. (CVE-2023-25362)

  - A use-after-free vulnerability in WebCore::RenderLayer::updateDescendantDependentFlags in WebKitGTK before     2.36.8 allows attackers to execute code remotely. (CVE-2023-25363)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:2834 advisory.

  - webkitgtk: buffer overflow issue was addressed with improved memory handling (CVE-2022-32886)

  - webkitgtk: out-of-bounds write issue was addressed with improved bounds checking (CVE-2022-32888)

  - webkitgtk: correctness issue in the JIT was addressed with improved checks (CVE-2022-32923)

  - webkitgtk: issue was addressed with improved UI handling (CVE-2022-42799)

  - webkitgtk: type confusion issue leading to arbitrary code execution (CVE-2022-42823)

  - webkitgtk: sensitive information disclosure issue (CVE-2022-42824)

  - webkitgtk: use-after-free issue leading to arbitrary code execution (CVE-2022-42826, CVE-2022-42867)

  - webkitgtk: memory disclosure issue was addressed with improved memory handling (CVE-2022-42852)

  - webkitgtk: memory corruption issue leading to arbitrary code execution (CVE-2022-42863, CVE-2022-46691,     CVE-2022-46699, CVE-2022-46700, CVE-2023-23517, CVE-2023-23518)

  - webkitgtk: Same Origin Policy bypass issue (CVE-2022-46692)

  - webkitgtk: logic issue leading to user information disclosure (CVE-2022-46698)

  - webkitgtk: improper bounds checking leading to arbitrary code execution (CVE-2022-48503)

  - webkitgtk: heap-use-after-free in WebCore::RenderLayer::addChild() (CVE-2023-25358)

  - webkitgtk: heap-use-after-free in WebCore::RenderLayer::renderer() (CVE-2023-25360)

  - webkitgtk: heap-use-after-free in WebCore::RenderLayer::setNextSibling() (CVE-2023-25361)

  - webkitgtk: heap-use-after-free in WebCore::RenderLayer::repaintBlockSelectionGaps() (CVE-2023-25362)

  - webkitgtk: heap-use-after-free in WebCore::RenderLayer::updateDescendantDependentFlags() (CVE-2023-25363)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:2256 advisory.

  - webkitgtk: buffer overflow issue was addressed with improved memory handling (CVE-2022-32886)

  - webkitgtk: out-of-bounds write issue was addressed with improved bounds checking (CVE-2022-32888)

  - webkitgtk: correctness issue in the JIT was addressed with improved checks (CVE-2022-32923)

  - webkitgtk: issue was addressed with improved UI handling (CVE-2022-42799)

  - webkitgtk: type confusion issue leading to arbitrary code execution (CVE-2022-42823)

  - webkitgtk: sensitive information disclosure issue (CVE-2022-42824)

  - webkitgtk: use-after-free issue leading to arbitrary code execution (CVE-2022-42826, CVE-2022-42867)

  - webkitgtk: memory disclosure issue was addressed with improved memory handling (CVE-2022-42852)

  - webkitgtk: memory corruption issue leading to arbitrary code execution (CVE-2022-42863, CVE-2022-46691,     CVE-2022-46699, CVE-2022-46700, CVE-2023-23517, CVE-2023-23518)

  - webkitgtk: Same Origin Policy bypass issue (CVE-2022-46692)

  - webkitgtk: logic issue leading to user information disclosure (CVE-2022-46698)

  - webkitgtk: improper bounds checking leading to arbitrary code execution (CVE-2022-48503)

  - webkitgtk: heap-use-after-free in WebCore::RenderLayer::addChild() (CVE-2023-25358)

  - webkitgtk: heap-use-after-free in WebCore::RenderLayer::renderer() (CVE-2023-25360)

  - webkitgtk: heap-use-after-free in WebCore::RenderLayer::setNextSibling() (CVE-2023-25361)

  - webkitgtk: heap-use-after-free in WebCore::RenderLayer::repaintBlockSelectionGaps() (CVE-2023-25362)

  - webkitgtk: heap-use-after-free in WebCore::RenderLayer::updateDescendantDependentFlags() (CVE-2023-25363)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Severity
196345	RHEL 6 : webkitgtk (Unpatched Vulnerability)	Nessus	Red Hat Local Security Checks	critical
180314	SUSE SLED15 / SLES15 / openSUSE 15 Security Update : webkit2gtk3 (SUSE-SU-2023:3419-1)	Nessus	SuSE Local Security Checks	high
179827	SUSE SLES15 Security Update : webkit2gtk3 (SUSE-SU-2023:3300-1)	Nessus	SuSE Local Security Checks	high
179591	SUSE SLED12 / SLES12 Security Update : webkit2gtk3 (SUSE-SU-2023:3237-1)	Nessus	SuSE Local Security Checks	high
179578	SUSE SLES15 / openSUSE 15 Security Update : webkit2gtk3 (SUSE-SU-2023:3233-1)	Nessus	SuSE Local Security Checks	high
178505	Amazon Linux 2 : webkitgtk4 (ALAS-2023-2141)	Nessus	Amazon Linux Local Security Checks	high
175887	CentOS 8 : webkit2gtk3 (CESA-2023:2834)	Nessus	CentOS Local Security Checks	high
175882	RHEL 8 : webkit2gtk3 (RHSA-2023:2834)	Nessus	Red Hat Local Security Checks	high
175422	RHEL 9 : webkit2gtk3 (RHSA-2023:2256)	Nessus	Red Hat Local Security Checks	high

Detections

Analytics

CVE-2022-48503

high

Tenable Plugins

critical

high

high

high

high

high

high

high

high