NVD disclosure day

Published threat advisories for November 30, 2023

CVE-2023-42917

Apple WebKit Memory Corruption Leading to Code Execution.

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A memory corruption vulnerability in web content processing could lead to arbitrary code execution. Reports indicate this issue has been exploited. Organizations should update affected Apple products and Safari to mitigate business risk.

NVD published: November 30, 2023 • CISA KEV

CVE advisoryKnown Exploit

CVE-2023-42916

Apple WebKit Vulnerability May Disclose Sensitive Information.

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A WebKit vulnerability in Apple products may allow attackers to disclose sensitive information through specially crafted web content. This impacts organizations utilizing affected Apple software, potentially exposing confidential data and posing business risk. Remediation is advised.

NVD published: November 30, 2023 • CISA KEV