VDB
BIT-jre-2023-41074
BIT-jre-2023-41074
PUBLISHED
CVSS 8.800000190734863 HIGH
The issue was addressed with improved checks. This issue is fixed in tvOS 17, Safari 17, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. Processing web content may lead to arbitrary code execution.
Risk Scores
CVSS 3.1
8.800000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | jre | 0, 1.9.0, 0 |
Exploit Intelligence
- macos_v2_generated.go (github-poc)
- macos_v1_generated.go (github-poc)
- ios_v2_generated.go (github-poc)
- ios_v1_generated.go (github-poc)
- safari_v2_generated.go (github-poc)
Timeline
- May 8, 2026 CVE Published
- May 8, 2026 CVE Updated
- May 8, 2026 Distribution Patch
References
- http://seclists.org/fulldisclosure/2023/Oct/10 url
- http://seclists.org/fulldisclosure/2023/Oct/2 url
- http://seclists.org/fulldisclosure/2023/Oct/3 url
- http://seclists.org/fulldisclosure/2023/Oct/8 url
- http://seclists.org/fulldisclosure/2023/Oct/9 url
- http://www.openwall.com/lists/oss-security/2023/09/28/3 url
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4EEMDC5TQAANFH5D77QM34ZTUKXPFGVL/ url
- https://nvd.nist.gov/vuln/detail/CVE-2023-41074 url
- https://openjdk.org/groups/vulnerability/advisories/2024-04-16 url
- https://security.gentoo.org/glsa/202401-33 url
- https://support.apple.com/en-us/HT213936 url
- https://support.apple.com/en-us/HT213937 url
- https://support.apple.com/en-us/HT213938 url
- https://support.apple.com/en-us/HT213940 url
- https://support.apple.com/en-us/HT213941 url
- https://webkitgtk.org/security/WSA-2023-0009.html url
- https://www.debian.org/security/2023/dsa-5527 url