QwikSec

Security Database

CVE

CWE

Training

CVE-2023-42916

Published: Nov 30, 2023

Modified: Oct 21, 2025

PUBLISHED

Description

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 17.1.2 and iPadOS 17.1.2, macOS Sonoma 14.1.2, Safari 17.1.2. Processing web content may disclose sensitive information. Apple is aware of a report that this issue may have been exploited against versions of iOS before iOS 16.7.1.

Vendor	Product	Versions
Apple	Safari	affected `unspecified - < 17.1`
Apple	macOS	affected `unspecified - < 14.1`
Apple	iOS and iPadOS	affected `unspecified - < 17.1`

References

https://support.apple.com/en-us/HT214033

https://support.apple.com/en-us/HT214032

https://support.apple.com/en-us/HT214031

https://support.apple.com/kb/HT214033

http://www.openwall.com/lists/oss-security/2023/12/05/1

https://lists.fedoraproject.org/archives/list/[email protected]/message/P5LQS6VEI7VIZNC7QGQ62EOV45R5RJIR/

https://lists.fedoraproject.org/archives/list/[email protected]/message/AD2KIHHCUBQC2YYH3FJWAHI5BG3QETOH/

https://support.apple.com/kb/HT214034

https://www.debian.org/security/2023/dsa-5575

http://seclists.org/fulldisclosure/2023/Dec/3

http://seclists.org/fulldisclosure/2023/Dec/4

http://seclists.org/fulldisclosure/2023/Dec/5

http://seclists.org/fulldisclosure/2023/Dec/8

http://seclists.org/fulldisclosure/2023/Dec/13

http://seclists.org/fulldisclosure/2023/Dec/12

https://security.gentoo.org/glsa/202401-04

https://support.apple.com/kb/HT214062

http://seclists.org/fulldisclosure/2024/Jan/35

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.