CVE-2022-22628

A use after free issue was addressed with improved memory management. This issue is fixed in macOS Monterey 12.3, Safari 15.4, watchOS 8.5, iOS 15.4 and iPadOS 15.4, tvOS 15.4. Processing maliciously crafted web content may lead to arbitrary code execution.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:ipad_os:*:*:*:*:*:*:*:*

History

28 Sep 2022, 12:06

Type Values Removed Values Added
References (MISC) https://support.apple.com/en-us/HT213186 - (MISC) https://support.apple.com/en-us/HT213186 - Vendor Advisory
References (MISC) https://support.apple.com/en-us/HT213183 - (MISC) https://support.apple.com/en-us/HT213183 - Vendor Advisory
References (MISC) https://support.apple.com/en-us/HT213187 - (MISC) https://support.apple.com/en-us/HT213187 - Vendor Advisory
References (MISC) https://support.apple.com/en-us/HT213193 - (MISC) https://support.apple.com/en-us/HT213193 - Vendor Advisory
References (MISC) https://support.apple.com/en-us/HT213182 - (MISC) https://support.apple.com/en-us/HT213182 - Vendor Advisory
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 8.8
CWE CWE-416
First Time Apple macos
Apple watchos
Apple safari
Apple ipad Os
Apple iphone Os
Apple tvos
Apple
CPE cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:ipad_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*

23 Sep 2022, 19:15

Type Values Removed Values Added
New CVE

Information

Published : 2022-09-23 19:15

Updated : 2022-09-28 12:06


NVD link : CVE-2022-22628

Mitre link : CVE-2022-22628


JSON object : View

Products Affected

apple

  • ipad_os
  • tvos
  • macos
  • safari
  • iphone_os
  • watchos
CWE
CWE-416

Use After Free