CVE-2023-32370

A logic issue was addressed with improved validation. This issue is fixed in macOS Ventura 13.3. Content Security Policy to block domains with wildcards may fail.

Published: Sep 6, 2023
Updated: Sep 9, 2023
CVE: CVE-2023-32370
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.3
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
apple / macos	13.0	13.3
wpewebkit / wpe_webkit	-	2.40.1
webkitgtk / webkitgtk	-	2.40.1

http://www.openwall.com/lists/oss-security/2023/09/11/1
https://security.gentoo.org/glsa/202401-04
https://support.apple.com/en-us/HT213670

Vulnerability Database

289,599

CVE-2023-32370