VDB
CVE-2023-5217
CVE-2023-5217
PUBLISHED
KEV
Es besteht eine Schwachstelle in Apple iPadOS und Apple iOS. Dieser Fehler besteht in der WebRTC-Komponente aufgrund eines Pufferüberlaufproblems. Ein entfernter Angreifer kann diese Schwachstelle zur Ausführung von beliebigem Code ausnutzen.
EPSS 4.98% · 89.9th percentile
Risk Scores
EPSS Score
4.98%
89.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian | Debian Linux | |
| Fedora | Fedora Linux | |
| Google Chrome <117.0.5938.132 | ||
| Fortinet | Fortinet FortiClient Windows <7.0.10 | |
| Fortinet | Fortinet FortiClient Linux <7.2.5 | |
| Xerox | Xerox FreeFlow Print Server v2 / Windows 10 | |
| Mozilla | Mozilla Firefox for Android <118.1.0 | |
| Fortinet | Fortinet FortiClient EMS <7.0.10 | |
| Xerox | Xerox FreeFlow Print Server v9 | |
| IGEL | IGEL OS 12 | |
| Fortinet | Fortinet FortiClient EMS <7.2.2 | |
| Microsoft | Microsoft Edge <extended 116.0.1938.98 | |
| Mozilla | Mozilla Firefox <118.0.1 | |
| Fortinet | Fortinet FortiClient Linux <7.4.0 | |
| Fortinet | Fortinet FortiClient Windows <7.2.3 | |
| Xerox | Xerox FreeFlow Print Server v7 | |
| Mozilla | Mozilla Firefox ESR <115.3.1 | |
| Red Hat | Red Hat Enterprise Linux | |
| Apple | Apple iPadOS < 16.7.1 | |
| Oracle | Oracle Linux |
…and 13 more
Exploit Intelligence
- Trinadh465/platform_external_libvpx_v1.4.0_CVE-2023-5217 (github-poc)
- Trinadh465/platform_external_libvpx_v1.4.0_CVE-2023-5217 (github-poc)
- Trinadh465/platform_external_libvpx_v1.4.0_CVE-2023-5217 (github-poc)
- Trinadh465/platform_external_libvpx_v1.4.0_CVE-2023-5217 (github-poc)
- Trinadh465/platform_external_libvpx_v1.4.0_CVE-2023-5217 (github-poc)
- Trinadh465/platform_external_libvpx_v1.4.0_CVE-2023-5217 (github-poc)
- Trinadh465/platform_external_libvpx_v1.4.0_CVE-2023-5217 (github-poc)
- Trinadh465/platform_external_libvpx_v1.4.0_CVE-2023-5217 (github-poc)
- Trinadh465/platform_external_libvpx_v1.4.0_CVE-2023-5217 (github-poc)
- Trinadh465/platform_external_libvpx_v1.4.0_CVE-2023-5217 (github-poc)
…and 181 more exploits
Timeline
- Jan 21, 1970 Security Advisory
- Jan 21, 1970 Security Advisory
- Jan 21, 1970 Distribution Patch
- Jan 21, 1970 Distribution Patch
- Jan 21, 1970 Distribution Patch
- Sep 27, 2023 PoC Published
- Sep 28, 2023 CVE Published
- Sep 28, 2023 PoC Published
- Sep 29, 2023 EPSS Score
- Sep 29, 2023 PoC Published
- Oct 2, 2023 CISA KEV Added
- Oct 2, 2023 PoC Published
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2572.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2572 advisory
- https://support.apple.com/en-us/HT213972 advisory
- https://support.apple.com/en-us/HT213961 advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2498.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2498 advisory
- https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_27.html advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-d66a01ad4f advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-8f3e1b6f78 advisory
- https://lists.debian.org/debian-security-announce/2023/msg00203.html advisory
- https://lists.debian.org/debian-lts-announce/2023/10/msg00001.html advisory
- https://lists.debian.org/debian-security-announce/2023/msg00201.html advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-0cd03c3746 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-c890266d3f advisory
- https://www.debian.org/security/2023/dsa-5508 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-cca1f87440 advisory
- https://www.debian.org/security/2023/dsa-5510 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-edc9c74369 advisory
- https://learn.microsoft.com/en-us/deployedge/microsoft-edge-relnotes-security#september-29-2023 advisory
- https://ubuntu.com/security/notices/USN-6403-1 advisory
…and 76 more