CVE-2022-42852

Severity

65%

Complexity

27%

Confidentiality

60%

The issue was addressed with improved memory handling. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing maliciously crafted web content may result in the disclosure of process memory.

CVSS 3.1 Base Score 6.5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N).

Overview

First reported 2 years ago

2022-12-15 19:15:00

Last updated 2 years ago

2022-12-21 06:15:00

Affected Software

Apple Safari

References

https://support.apple.com/en-us/HT213531

https://support.apple.com/en-us/HT213532

https://support.apple.com/en-us/HT213530

https://support.apple.com/en-us/HT213537

https://support.apple.com/en-us/HT213535

https://support.apple.com/en-us/HT213536

https://support.apple.com/en-us/HT213531

Release Notes, Vendor Advisory

https://support.apple.com/en-us/HT213532

Release Notes, Vendor Advisory

https://support.apple.com/en-us/HT213530

Release Notes, Vendor Advisory

https://support.apple.com/en-us/HT213537

Release Notes, Vendor Advisory

https://support.apple.com/en-us/HT213535

Release Notes, Vendor Advisory

https://support.apple.com/en-us/HT213536

Release Notes, Vendor Advisory

20221220 APPLE-SA-2022-12-13-7 tvOS 16.2

20221220 APPLE-SA-2022-12-13-8 watchOS 9.2

20221220 APPLE-SA-2022-12-13-9 Safari 16.2

20221220 APPLE-SA-2022-12-13-1 iOS 16.2 and iPadOS 16.2

20221220 APPLE-SA-2022-12-13-2 iOS 15.7.2 and iPadOS 15.7.2

20221220 APPLE-SA-2022-12-13-4 macOS Ventura 13.1

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.