CVE-2022-32912

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in Safari 16, iOS 16, iOS 15.7 and iPadOS 15.7. Processing maliciously crafted web content may lead to arbitrary code execution.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*

History

31 Oct 2022, 00:15

Type Values Removed Values Added
References
  • (FULLDISC) http://seclists.org/fulldisclosure/2022/Oct/40 -
  • (FULLDISC) http://seclists.org/fulldisclosure/2022/Oct/39 -
  • (FULLDISC) http://seclists.org/fulldisclosure/2022/Oct/47 -
  • (FULLDISC) http://seclists.org/fulldisclosure/2022/Oct/49 -
  • (FULLDISC) http://seclists.org/fulldisclosure/2022/Oct/50 -

30 Oct 2022, 23:16

Type Values Removed Values Added
References
  • (FULLDISC) http://seclists.org/fulldisclosure/2022/Oct/41 -
  • (FULLDISC) http://seclists.org/fulldisclosure/2022/Oct/28 -

22 Sep 2022, 18:27

Type Values Removed Values Added
CWE CWE-125
First Time Apple iphone Os
Apple ipados
Apple safari
Apple
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 8.8
CPE cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
References (MISC) https://support.apple.com/en-us/HT213442 - (MISC) https://support.apple.com/en-us/HT213442 - Release Notes, Vendor Advisory
References (MISC) https://support.apple.com/en-us/HT213445 - (MISC) https://support.apple.com/en-us/HT213445 - Release Notes, Vendor Advisory
References (MISC) https://support.apple.com/en-us/HT213446 - (MISC) https://support.apple.com/en-us/HT213446 - Release Notes, Vendor Advisory

20 Sep 2022, 21:15

Type Values Removed Values Added
New CVE

Information

Published : 2022-09-20 21:15

Updated : 2022-10-31 00:15


NVD link : CVE-2022-32912

Mitre link : CVE-2022-32912


JSON object : View

Products Affected

apple

  • safari
  • ipados
  • iphone_os
CWE
CWE-125

Out-of-bounds Read