CVE-2023-42950

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-42950

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-42950.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2023-42950

Downstream

DEBIAN-CVE-2023-42950

DSA-5684-1

MINI-389v-rv84-89qh

OESA-2024-2485

OESA-2024-2486

OESA-2024-2487

OESA-2024-2488

OESA-2024-2489

RHSA-2024:9144

RHSA-2024:9636

RHSA-2025:10364

SUSE-SU-2024:1269-1

SUSE-SU-2024:1270-1

SUSE-SU-2024:1293-1

SUSE-SU-2024:1944-1

SUSE-SU-2024:1976-1

UBUNTU-CVE-2023-42950

USN-6732-1

Related

Published

2024-03-28T16:15:08Z

Modified

2025-08-09T20:01:27Z

Severity

8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

A use after free issue was addressed with improved memory management. This issue is fixed in Safari 17.2, iOS 17.2 and iPadOS 17.2, tvOS 17.2, watchOS 10.2, macOS Sonoma 14.2. Processing maliciously crafted web content may lead to arbitrary code execution.

References

Affected packages