An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in Safari 16, iOS 16, iOS 15.7 and iPadOS 15.7. Processing maliciously crafted web content may lead to arbitrary code execution.
References
Link | Resource |
---|---|
http://seclists.org/fulldisclosure/2022/Oct/28 | Mailing List Third Party Advisory |
http://seclists.org/fulldisclosure/2022/Oct/39 | Mailing List Third Party Advisory |
http://seclists.org/fulldisclosure/2022/Oct/40 | Mailing List Third Party Advisory |
http://seclists.org/fulldisclosure/2022/Oct/41 | Mailing List Third Party Advisory |
http://seclists.org/fulldisclosure/2022/Oct/47 | Mailing List Third Party Advisory |
http://seclists.org/fulldisclosure/2022/Oct/49 | Mailing List Third Party Advisory |
http://seclists.org/fulldisclosure/2022/Oct/50 | Mailing List Third Party Advisory |
https://support.apple.com/en-us/HT213442 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT213445 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT213446 | Release Notes Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
07 Dec 2022, 03:11
Type | Values Removed | Values Added |
---|---|---|
References | (FULLDISC) http://seclists.org/fulldisclosure/2022/Oct/47 - Mailing List, Third Party Advisory | |
References | (FULLDISC) http://seclists.org/fulldisclosure/2022/Oct/28 - Mailing List, Third Party Advisory | |
References | (FULLDISC) http://seclists.org/fulldisclosure/2022/Oct/39 - Mailing List, Third Party Advisory | |
References | (FULLDISC) http://seclists.org/fulldisclosure/2022/Oct/40 - Mailing List, Third Party Advisory | |
References | (FULLDISC) http://seclists.org/fulldisclosure/2022/Oct/49 - Mailing List, Third Party Advisory | |
References | (FULLDISC) http://seclists.org/fulldisclosure/2022/Oct/41 - Mailing List, Third Party Advisory | |
References | (FULLDISC) http://seclists.org/fulldisclosure/2022/Oct/50 - Mailing List, Third Party Advisory |
31 Oct 2022, 00:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
30 Oct 2022, 23:16
Type | Values Removed | Values Added |
---|---|---|
References |
|
22 Sep 2022, 18:27
Type | Values Removed | Values Added |
---|---|---|
First Time |
Apple iphone Os
Apple ipados Apple safari Apple |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.8 |
References | (MISC) https://support.apple.com/en-us/HT213442 - Release Notes, Vendor Advisory | |
References | (MISC) https://support.apple.com/en-us/HT213445 - Release Notes, Vendor Advisory | |
References | (MISC) https://support.apple.com/en-us/HT213446 - Release Notes, Vendor Advisory | |
CPE | cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:* |
|
CWE | CWE-125 |
20 Sep 2022, 21:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-09-20 21:15
Updated : 2023-12-10 14:35
NVD link : CVE-2022-32912
Mitre link : CVE-2022-32912
CVE.ORG link : CVE-2022-32912
JSON object : View
Products Affected
apple
- safari
- iphone_os
- ipados
CWE
CWE-125
Out-of-bounds Read