Rewterz Annual Threat Intelligence Report 2025 - Download Now

Request a Demo
Rewterz
Rewterz Threat Advisory – CVE-2023-3977 – Multiple plugins for WordPress by Inisev Vulnerability
August 1, 2023
Rewterz
Rewterz Threat Alert – JSOutProx Malware Targeting Financial Institutions – Active IOCs
August 1, 2023

Rewterz Threat Advisory – CVE-2023-32445 – Apple Safari, watchOS, iOS, iPadOS, tvOS and macOS Ventura Vulnerability

Severity

Medium

Analysis Summary

CVE-2023-32445

Apple Safari, watchOS, iOS, iPadOS, tvOS and macOS Ventura is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using a specially crafted URL to execute script in a victim’s Web browser within the security context of the hosting Web site, once the URL is clicked. An attacker could use this vulnerability to steal the victim’s cookie-based authentication credentials.

Impact

  • Cross-Site Scripting

Indicators Of Compromise

CVE

  • CVE-2023-32445

Affected Vendors

Apple

Affected Products

  • Apple Safari 16.5.0
  • Apple iOS 16.5.1
  • Apple iPadOS 16.5.1
  • Apple macOS Ventura 13.4.1
  • Apple watchOS 9.5.1
  • Apple iOS 15.7.7
  • Apple iPadOS 15.7.7
  • Apple tvOS 16.5

Remediation

Refer to Apple Security Document for patch, upgrade or suggested workaround information.

Apple iOS 16.6 and iPadOS 16.6

Apple iOS 15.7.8 and iPadOS 15.7.8

Apple macOS Ventura 13.5

Apple tvOS 16.6