← ExploitWatch
HomeExploited Vulnerabilities

CVE-2023-28204 — Actively Exploited: Multiple Products (Apple)

Apple iOS, iPadOS, macOS, tvOS, watchOS, and Safari WebKit contain an out-of-bounds read vulnerability that may disclose sensitive information when processing maliciously crafted web content. This vulnerability could impact HTML parsers that use WebKit, including but not limited to Apple Safari and non-Apple products w

CVE IDCVE-2023-28204
VendorApple
ProductMultiple Products
Vulnerability nameApple Multiple Products WebKit Out-of-Bounds Read Vulnerability
Date added2023-05-22
Remediation due2023-06-12
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionApple iOS, iPadOS, macOS, tvOS, watchOS, and Safari WebKit contain an out-of-bounds read vulnerability that may disclose sensitive information when processing maliciously crafted web content. This vulnerability could impact HTML parsers that use WebKit, including but not limited to Apple Safari and non-Apple products which rely on WebKit for HTML processing.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →