CVE-2023-47100 — Improper Handling of Exceptional Conditions in Apple Macos Sequoia

CWE-755 — Improper Handling of Exceptional Conditions8 documents7 sources

Severity

9.8CRITICAL

No vector

EPSS

No EPSS data

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple Macos Sequoia Msrc Cbl2 Perl 5.34.1-489 ON CBL Mariner 2.0 Msrc Cbl2 Perl 5.34.1-490 ON CBL Mariner 2.0

Timeline

PublishedNov 14

Latest updateDec 11

Description

ICS Advisory ## Siemens SINEC INS Release DateNovember 14, 2024 Alert CodeICSA-24-319-08 Related topics: Industrial Control System Vulnerabilities, Industrial Control Systems As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories (CERT Services | Services …

Affected Packages3 packages

▶Appleapple/macos_sequoia15.2

▶msrcmsrc/cbl2_perl_5.34.1-489_on_cbl_mariner_2.0

▶msrcmsrc/cbl2_perl_5.34.1-490_on_cbl_mariner_2.0

🔴Vulnerability Details

GHSA

GHSA-hx28-vm67-xh3r: In Perl before 5↗2023-12-03

▶

📋Vendor Advisories

Apple

CVE-2023-47100: macOS Sequoia 15.2↗2024-12-11

▶

CISA ICS

Siemens SINEC INS↗2024-11-14

▶

Oracle

Oracle Oracle Communications Applications Risk Matrix: Platform (Perl) — CVE-2023-47100↗2024-04-15

▶

Microsoft

In Perl before 5.38.2, S_parse_uniprop_string in regcomp.c can write to unallocated space because a property name associated with a \p{...} regular expression construct is mishandled. The earliest aff↗2023-12-12

▶

Red Hat

perl: Perl security bypass↗2023-12-03

▶

🕵️Threat Intelligence

Qualys

Oracle Security Updates, April 2024: Critical Patch | Qualys↗2024-04-17

▶

Qualys

Oracle Patch Update, April 2024 Security Update Review↗2024-04-17

▶