CVE-2023-27932
First published: Mon Mar 27 2023(Updated: )
[Unknown description]
Credit: an anonymous researcher product-security@apple.com product-security@apple.com product-security@apple.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| <13.3 | 13.3 | |
| <16.4 | 16.4 | |
| Apple tvOS | <16.4 | 16.4 |
| Apple iOS | <16.4 | 16.4 |
| Apple iPadOS | <16.4 | 16.4 |
| Apple watchOS | <9.4 | 9.4 |
| Apple iPadOS | <16.4 | |
| Apple iPhone OS | <16.4 | |
| Apple macOS | <13.3 | |
| Apple Safari | <16.4 | |
| Apple tvOS | <16.4 | |
| Apple watchOS | <9.4 | |
| Debian Debian Linux | =10.0 | |
| debian/webkit2gtk | <=2.36.4-1~deb10u1 | 2.38.6-0+deb10u1 2.40.5-1~deb11u1 2.42.1-1~deb11u2 2.40.5-1~deb12u1 2.42.1-1~deb12u1 2.42.1-2 |
| debian/wpewebkit | 2.38.6-1~deb11u1 2.38.6-1 2.42.1-1 | |
| ubuntu/webkit2gtk | <2.38.6-0ubuntu0.20.04.1 | 2.38.6-0ubuntu0.20.04.1 |
| ubuntu/webkit2gtk | <2.38.6-0ubuntu0.22.04.1 | 2.38.6-0ubuntu0.22.04.1 |
| ubuntu/webkit2gtk | <2.38.6-0ubuntu0.22.10.1 | 2.38.6-0ubuntu0.22.10.1 |
| ubuntu/webkit2gtk | <2.40.1-0ubuntu0.23.04.1 | 2.40.1-0ubuntu0.23.04.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://support.apple.com/en-us/HT213670 (Advisory)
- https://support.apple.com/en-us/HT213671 (Advisory)
- https://support.apple.com/en-us/HT213674 (Advisory)
- https://support.apple.com/en-us/HT213676 (Advisory)
- https://support.apple.com/en-us/HT213678 (Advisory)
- https://webkitgtk.org/security/WSA-2023-0003.html
- https://security-tracker.debian.org/tracker/CVE-2023-27932
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-27932
- https://ubuntu.com/security/notices/USN-6061-1
- https://nvd.nist.gov/vuln/detail/CVE-2023-27932
- https://launchpad.net/bugs/cve/CVE-2023-27932
- https://ubuntu.com/security/CVE-2023-27932
Parent vulnerabilities
(Appears in the following advisories)
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2023-32436
- CVE-2023-27968
- CVE-2023-28209
- CVE-2023-28210
- CVE-2023-28211
- CVE-2023-28212
- CVE-2023-28213
- CVE-2023-28214
- CVE-2023-28215
- CVE-2023-32356
- CVE-2023-23532
- CVE-2023-23527
- CVE-2023-27931
- CVE-2023-28179
- CVE-2023-42830
- CVE-2023-27951
- CVE-2023-27961
- CVE-2023-23543
- CVE-2023-23534
- CVE-2023-27955
- CVE-2023-27936
- CVE-2023-28181
- CVE-2023-32426
- CVE-2022-43551
- CVE-2022-43552
- CVE-2023-27934
- CVE-2023-28180
- CVE-2023-27935
- CVE-2023-27953
- CVE-2023-27958
- CVE-2023-40433
- CVE-2023-28190
- CVE-2023-23537
- CVE-2023-28195
- CVE-2023-27956
- CVE-2023-32366
- CVE-2023-27937
- CVE-2023-23526
- CVE-2023-27928
- CVE-2023-27939
- CVE-2023-27947
- CVE-2023-27948
- CVE-2023-42862
- CVE-2023-42865
- CVE-2023-23535
- CVE-2023-27929
- CVE-2023-27946
- CVE-2023-27957
- CVE-2023-32378
- CVE-2023-28187
- CVE-2023-27941
- CVE-2023-28199
- CVE-2023-23536
- CVE-2023-23514
- CVE-2023-27969
- CVE-2023-27933
- CVE-2023-28200
- CVE-2023-27943
- CVE-2023-23525
- CVE-2023-40383
- CVE-2023-41075
- CVE-2023-28189
- CVE-2023-28197
- CVE-2023-27950
- CVE-2023-27949
- CVE-2023-28182
- CVE-2023-23538
- CVE-2023-27962
- CVE-2023-23523
- CVE-2023-27942
- CVE-2023-32362
- CVE-2023-27952
- CVE-2023-23533
- CVE-2023-28178
- CVE-2023-27966
- CVE-2023-27963
- CVE-2023-23542
- CVE-2023-28192
- CVE-2023-28188
- CVE-2023-0049
- CVE-2023-0051
- CVE-2023-0054
- CVE-2023-0288
- CVE-2023-0433
- CVE-2023-0512
- CVE-2023-32370
- CVE-2023-28198
- CVE-2023-32435
- CVE-2023-27932
- CVE-2023-27954
- CVE-2014-1745
- CVE-2023-32358
- CVE-2023-28201
- CVE-2023-27944
- CVE-2023-23528
- CVE-2023-28185
- CVE-2023-23541
- CVE-2023-23540
- CVE-2023-27959
- CVE-2023-27970
- CVE-2023-23494
- CVE-2023-32424
- CVE-2022-46724
- CVE-2023-28194
- CVE-2022-46725
- CVE-2022-46705
Frequently Asked Questions
What is the severity of CVE-2023-27932?
The severity of CVE-2023-27932 is medium, with a severity value of 5.5.
How was CVE-2023-27932 fixed?
CVE-2023-27932 was fixed with improved state management in macOS Ventura 13.3, Safari 16.4, iOS 16.4 and iPadOS 16.4, tvOS 16.4, and watchOS 9.4.
Which software versions are affected by CVE-2023-27932?
The following software versions are affected by CVE-2023-27932: macOS Ventura up to version 13.3, Safari up to version 16.4, iOS up to version 16.4, iPadOS up to version 16.4, tvOS up to version 16.4, and watchOS up to version 9.4.
What is the impact of CVE-2023-27932?
The impact of CVE-2023-27932 is that processing maliciously crafted web content may bypass the Same Origin Policy.
Where can I find more information about CVE-2023-27932?
You can find more information about CVE-2023-27932 on the following references: [link1](https://support.apple.com/en-us/HT213674), [link2](https://support.apple.com/en-us/HT213670), [link3](https://support.apple.com/en-us/HT213671).
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- collector/apple-support
- source/Apple
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-api
- collector/nvd-cve
- collector/nvd-index
- collector/nvd-latest
- collector/security-tracker-debian
- collector/usn-cve
- vendor/apple
- canonical/apple macos ventura
- canonical/apple safari
- canonical/apple tvos
- canonical/apple ios
- canonical/apple ipados
- canonical/apple watchos
- canonical/apple iphone os
- canonical/apple macos
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/10.0
- package-manager/debian
- package-manager/ubuntu