VIR Vulnerability Intelligence Relay

CVE-2023-28204

high KEV
Published 2023-06-05 · Modified 2023-06-06
CVSS v3
CVSS v2
VIR risk
9.5

Description

Important: webkit2gtk3 security update

CISA KEV

Vendor
Apple
Product
Multiple Products
Due date
2023-06-12

Predictions

Exploit likelihood
99%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/9/ALSA-2023-3432.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/8/ALSA-2023-3433.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2209214

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2209208

vendor Authored 2026-05-27

Vendor advisory: alma — https://access.redhat.com/errata/RHSA-2023:3433

vendor Authored 2026-05-27

Vendor advisory: cisa-kev — https://support.apple.com/HT213757, https://support.apple.com/HT213758, https://support.apple.com/HT213761, https://support.apple.com/HT213762, https://support.apple.com/HT213764, https://support.apple.com/HT213765; https://nvd.nist.gov/vuln/detail/CVE-2023-28204

vendor Authored 2026-05-27

Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2023-28204

vendor Authored 2026-05-27

Vendor advisory: rocky — https://errata.rockylinux.org/RLSA-2023:3432

vendor Authored 2026-05-27

Vendor advisory: rocky — https://errata.rockylinux.org/RLSA-2023:3433

vendor Authored 2026-05-27

Vendor advisory: redhat — https://access.redhat.com/errata/RHSA-2023:3432

Exploits

OS impact
OSVersionStatusFixed in
redhat rhel9fixed
rockylinux rocky8fixed
rockylinux rocky9fixed
debian debianbookwormfixed2.40.2-1~deb12u1
debian debianbullseyefixed2.40.2-1~deb11u1
debian debianforkyfixed2.40.2-1
debian debiansidfixed2.40.2-1
debian debiantrixiefixed2.40.2-1

References

Verify integrity in audit chain (admin only). AS-IS.