A correctness issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14, Safari 17, iOS 17 and iPadOS 17. Processing web content may lead to arbitrary code execution.

The remote SUSE Linux SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:0548-1 advisory.

  - Use-after-free vulnerability in the SVG implementation in Blink, as used in Google Chrome before     35.0.1916.114, allows remote attackers to cause a denial of service or possibly have unspecified other     impact via vectors that trigger removal of an SVGFontFaceElement object, related to     core/svg/SVGFontFaceElement.cpp. (CVE-2014-1745)

  - A use-after-free issue was addressed with improved memory management. This issue is fixed in watchOS 10,     iOS 17 and iPadOS 17, tvOS 17, macOS Sonoma 14, Safari 17. Processing web content may lead to arbitrary     code execution. (CVE-2023-40414)

  - A correctness issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14, Safari 17,     iOS 17 and iPadOS 17. Processing web content may lead to arbitrary code execution. (CVE-2023-42833)

  - An access issue was addressed with improved access restrictions. This issue is fixed in watchOS 10.3, tvOS     17.3, iOS 17.3 and iPadOS 17.3, macOS Sonoma 14.3, iOS 16.7.5 and iPadOS 16.7.5, Safari 17.3. A     maliciously crafted webpage may be able to fingerprint the user. (CVE-2024-23206)

  - The issue was addressed with improved memory handling. This issue is fixed in watchOS 10.3, tvOS 17.3, iOS     17.3 and iPadOS 17.3, macOS Sonoma 14.3, iOS 16.7.5 and iPadOS 16.7.5, Safari 17.3. Processing web content     may lead to arbitrary code execution. (CVE-2024-23213)

  - A type confusion issue was addressed with improved checks. This issue is fixed in tvOS 17.3, iOS 17.3 and     iPadOS 17.3, macOS Sonoma 14.3, iOS 16.7.5 and iPadOS 16.7.5, Safari 17.3, macOS Ventura 13.6.4, macOS     Monterey 12.7.3, visionOS 1.0.2. Processing maliciously crafted web content may lead to arbitrary code     execution. Apple is aware of a report that this issue may have been exploited. (CVE-2024-23222)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote SUSE Linux SLED12 / SLED_SAP12 / SLES12 / SLES_SAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:0545-1 advisory.

  - Use-after-free vulnerability in the SVG implementation in Blink, as used in Google Chrome before     35.0.1916.114, allows remote attackers to cause a denial of service or possibly have unspecified other     impact via vectors that trigger removal of an SVGFontFaceElement object, related to     core/svg/SVGFontFaceElement.cpp. (CVE-2014-1745)

  - A use-after-free issue was addressed with improved memory management. This issue is fixed in watchOS 10,     iOS 17 and iPadOS 17, tvOS 17, macOS Sonoma 14, Safari 17. Processing web content may lead to arbitrary     code execution. (CVE-2023-40414)

  - A correctness issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14, Safari 17,     iOS 17 and iPadOS 17. Processing web content may lead to arbitrary code execution. (CVE-2023-42833)

  - An access issue was addressed with improved access restrictions. This issue is fixed in watchOS 10.3, tvOS     17.3, iOS 17.3 and iPadOS 17.3, macOS Sonoma 14.3, iOS 16.7.5 and iPadOS 16.7.5, Safari 17.3. A     maliciously crafted webpage may be able to fingerprint the user. (CVE-2024-23206)

  - The issue was addressed with improved memory handling. This issue is fixed in watchOS 10.3, tvOS 17.3, iOS     17.3 and iPadOS 17.3, macOS Sonoma 14.3, iOS 16.7.5 and iPadOS 16.7.5, Safari 17.3. Processing web content     may lead to arbitrary code execution. (CVE-2024-23213)

  - A type confusion issue was addressed with improved checks. This issue is fixed in tvOS 17.3, iOS 17.3 and     iPadOS 17.3, macOS Sonoma 14.3, iOS 16.7.5 and iPadOS 16.7.5, Safari 17.3, macOS Ventura 13.6.4, macOS     Monterey 12.7.3, visionOS 1.0.2. Processing maliciously crafted web content may lead to arbitrary code     execution. Apple is aware of a report that this issue may have been exploited. (CVE-2024-23222)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of webkitgtk4 installed on the remote host is prior to 2.42.5-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2024-2459 advisory.

  - A use-after-free issue was addressed with improved memory management. This issue is fixed in watchOS 10,     iOS 17 and iPadOS 17, tvOS 17, macOS Sonoma 14, Safari 17. Processing web content may lead to arbitrary     code execution. (CVE-2023-40414)

  - A correctness issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14, Safari 17,     iOS 17 and iPadOS 17. Processing web content may lead to arbitrary code execution. (CVE-2023-42833)

  - An access issue was addressed with improved access restrictions. This issue is fixed in watchOS 10.3, tvOS     17.3, iOS 17.3 and iPadOS 17.3, macOS Sonoma 14.3, iOS 16.7.5 and iPadOS 16.7.5, Safari 17.3. A     maliciously crafted webpage may be able to fingerprint the user. (CVE-2024-23206)

  - The issue was addressed with improved memory handling. This issue is fixed in watchOS 10.3, tvOS 17.3, iOS     17.3 and iPadOS 17.3, macOS Sonoma 14.3, iOS 16.7.5 and iPadOS 16.7.5, Safari 17.3. Processing web content     may lead to arbitrary code execution. (CVE-2024-23213)

  - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
    (CVE-2024-23252)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote SUSE Linux SLES15 / SLES_SAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:0519-1 advisory.

  - Use-after-free vulnerability in the SVG implementation in Blink, as used in Google Chrome before     35.0.1916.114, allows remote attackers to cause a denial of service or possibly have unspecified other     impact via vectors that trigger removal of an SVGFontFaceElement object, related to     core/svg/SVGFontFaceElement.cpp. (CVE-2014-1745)

  - A use-after-free issue was addressed with improved memory management. This issue is fixed in watchOS 10,     iOS 17 and iPadOS 17, tvOS 17, macOS Sonoma 14, Safari 17. Processing web content may lead to arbitrary     code execution. (CVE-2023-40414)

  - A correctness issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14, Safari 17,     iOS 17 and iPadOS 17. Processing web content may lead to arbitrary code execution. (CVE-2023-42833)

  - An access issue was addressed with improved access restrictions. This issue is fixed in watchOS 10.3, tvOS     17.3, iOS 17.3 and iPadOS 17.3, macOS Sonoma 14.3, iOS 16.7.5 and iPadOS 16.7.5, Safari 17.3. A     maliciously crafted webpage may be able to fingerprint the user. (CVE-2024-23206)

  - The issue was addressed with improved memory handling. This issue is fixed in watchOS 10.3, tvOS 17.3, iOS     17.3 and iPadOS 17.3, macOS Sonoma 14.3, iOS 16.7.5 and iPadOS 16.7.5, Safari 17.3. Processing web content     may lead to arbitrary code execution. (CVE-2024-23213)

  - A type confusion issue was addressed with improved checks. This issue is fixed in tvOS 17.3, iOS 17.3 and     iPadOS 17.3, macOS Sonoma 14.3, iOS 16.7.5 and iPadOS 16.7.5, Safari 17.3, macOS Ventura 13.6.4, macOS     Monterey 12.7.3. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is     aware of a report that this issue may have been exploited. (CVE-2024-23222)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of Apple iOS running on the mobile device is prior to 17. It is, therefore, affected by multiple vulnerabilities.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:7055 advisory.

  - webkitgtk: Memory corruption issue when processing web content (CVE-2022-32885)

  - webkitgtk: Visiting a website that frames malicious content may lead to UI spoofing. (CVE-2022-32919)

  - webkitgtk: A website may able to track visited websites in private browsing (CVE-2022-32933)

  - webkitgtk: Visiting a malicious website may lead to address bar spoofing (CVE-2022-46705)

  - webkitgtk: Visiting a malicious website may lead to address bar spoofing. (CVE-2022-46725)

  - webkitgtk: Same Origin Policy bypass via crafted web content (CVE-2023-27932)

  - webkitgtk: Website may be able to track sensitive user information (CVE-2023-27954)

  - webkitgtk: use after free vulnerability (CVE-2023-28198)

  - webkitgtk: content security policy blacklist failure (CVE-2023-32370)

  - webkitgtk: arbitrary code execution (CVE-2023-32393, CVE-2023-38594, CVE-2023-38595, CVE-2023-38597,     CVE-2023-38600, CVE-2023-38611)

  - webkitgtk: disclose sensitive information (CVE-2023-38133)

  - webkitgtk: bypass Same Origin Policy (CVE-2023-38572)

  - webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2023-38592, CVE-2023-42833)

  - webkitgtk: track sensitive user information (CVE-2023-38599)

  - webkitgtk: processing web content may lead to arbitrary code execution (CVE-2023-39434)

  - webkitgtk: arbitrary javascript code execution (CVE-2023-40397)

  - webkitgtk: attacker with JavaScript execution may be able to execute arbitrary code (CVE-2023-40451)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:6535 advisory.

  - webkitgtk: Memory corruption issue when processing web content (CVE-2022-32885)

  - webkitgtk: Visiting a website that frames malicious content may lead to UI spoofing. (CVE-2022-32919)

  - webkitgtk: A website may able to track visited websites in private browsing (CVE-2022-32933)

  - webkitgtk: Visiting a malicious website may lead to address bar spoofing (CVE-2022-46705)

  - webkitgtk: Visiting a malicious website may lead to address bar spoofing. (CVE-2022-46725)

  - webkitgtk: Same Origin Policy bypass via crafted web content (CVE-2023-27932)

  - webkitgtk: Website may be able to track sensitive user information (CVE-2023-27954)

  - webkitgtk: use after free vulnerability (CVE-2023-28198)

  - webkitgtk: content security policy blacklist failure (CVE-2023-32370)

  - webkitgtk: arbitrary code execution (CVE-2023-32393, CVE-2023-38594, CVE-2023-38595, CVE-2023-38597,     CVE-2023-38600, CVE-2023-38611)

  - webkitgtk: disclose sensitive information (CVE-2023-38133)

  - webkitgtk: bypass Same Origin Policy (CVE-2023-38572)

  - webkitgtk: Processing web content may lead to arbitrary code execution (CVE-2023-38592, CVE-2023-42833)

  - webkitgtk: track sensitive user information (CVE-2023-38599)

  - webkitgtk: processing web content may lead to arbitrary code execution (CVE-2023-39434)

  - webkitgtk: arbitrary javascript code execution (CVE-2023-40397)

  - webkitgtk: attacker with JavaScript execution may be able to execute arbitrary code (CVE-2023-40451)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Severity
196345	RHEL 6 : webkitgtk (Unpatched Vulnerability)	Nessus	Red Hat Local Security Checks	critical
190834	SUSE SLED15 / SLES15 / openSUSE 15 Security Update : webkit2gtk3 (SUSE-SU-2024:0548-1)	Nessus	SuSE Local Security Checks	critical
190832	SUSE SLED12 / SLES12 Security Update : webkit2gtk3 (SUSE-SU-2024:0545-1)	Nessus	SuSE Local Security Checks	critical
190709	Amazon Linux 2 : webkitgtk4 (ALAS-2024-2459)	Nessus	Amazon Linux Local Security Checks	critical
190659	SUSE SLES15 Security Update : webkit2gtk3 (SUSE-SU-2024:0519-1)	Nessus	SuSE Local Security Checks	critical
189739	Apple iOS < 17 Multiple Vulnerabilities (HT213938)	Nessus	Mobile Devices	critical
185705	RHEL 8 : webkit2gtk3 (RHSA-2023:7055)	Nessus	Red Hat Local Security Checks	critical
185146	RHEL 9 : webkit2gtk3 (RHSA-2023:6535)	Nessus	Red Hat Local Security Checks	critical

Detections

Analytics

CVE-2023-42833

high

Tenable Plugins

critical

critical

critical

critical

critical

critical

critical

critical