CVE-2023-32370

A logic issue was addressed with improved validation. This issue is fixed in macOS Ventura 13.3. Content Security Policy to block domains with wildcards may fail.

Affected Software

Name	Vendor	Start Version	End Version
Macos	Apple	13.0 (including)	13.3 (excluding)
Red Hat Enterprise Linux 7 Extended Lifecycle Support	RedHat	webkitgtk4-0:2.48.3-2.el7_9	*
Red Hat Enterprise Linux 8	RedHat	webkit2gtk3-0:2.40.5-1.el8	*
Red Hat Enterprise Linux 9	RedHat	webkit2gtk3-0:2.40.5-1.el9	*
Qtwebkit-opensource-src	Ubuntu	bionic	*
Qtwebkit-opensource-src	Ubuntu	devel	*
Qtwebkit-opensource-src	Ubuntu	esm-apps/bionic	*
Qtwebkit-opensource-src	Ubuntu	esm-apps/focal	*
Qtwebkit-opensource-src	Ubuntu	esm-apps/jammy	*
Qtwebkit-opensource-src	Ubuntu	esm-apps/noble	*
Qtwebkit-opensource-src	Ubuntu	esm-infra/xenial	*
Qtwebkit-opensource-src	Ubuntu	focal	*
Qtwebkit-opensource-src	Ubuntu	jammy	*
Qtwebkit-opensource-src	Ubuntu	lunar	*
Qtwebkit-opensource-src	Ubuntu	mantic	*
Qtwebkit-opensource-src	Ubuntu	noble	*
Qtwebkit-opensource-src	Ubuntu	trusty	*
Qtwebkit-opensource-src	Ubuntu	upstream	*
Qtwebkit-opensource-src	Ubuntu	xenial	*
Qtwebkit-source	Ubuntu	bionic	*
Qtwebkit-source	Ubuntu	esm-apps/bionic	*
Qtwebkit-source	Ubuntu	esm-apps/xenial	*
Qtwebkit-source	Ubuntu	trusty	*
Qtwebkit-source	Ubuntu	xenial	*
Webkit2gtk	Ubuntu	bionic	*
Webkit2gtk	Ubuntu	esm-infra/bionic	*
Webkit2gtk	Ubuntu	esm-infra/focal	*
Webkit2gtk	Ubuntu	esm-infra/xenial	*
Webkit2gtk	Ubuntu	focal	*
Webkit2gtk	Ubuntu	jammy	*
Webkit2gtk	Ubuntu	lunar	*
Webkit2gtk	Ubuntu	upstream	*
Webkit2gtk	Ubuntu	xenial	*
Webkitgtk	Ubuntu	bionic	*
Webkitgtk	Ubuntu	esm-apps/bionic	*
Webkitgtk	Ubuntu	esm-apps/xenial	*
Webkitgtk	Ubuntu	trusty	*
Webkitgtk	Ubuntu	xenial	*
Wpewebkit	Ubuntu	esm-apps/focal	*
Wpewebkit	Ubuntu	esm-apps/jammy	*
Wpewebkit	Ubuntu	focal	*
Wpewebkit	Ubuntu	jammy	*
Wpewebkit	Ubuntu	trusty	*
Wpewebkit	Ubuntu	upstream	*

NVD	https://nvd.nist.gov/vuln/detail/CVE-2023-32370
CWE	https://cwe.mitre.org/data/definitions/.html

Affected Software

References