Lucene search

K
debiancveDebian Security Bug TrackerDEBIANCVE:CVE-2022-46698
HistoryDec 15, 2022 - 7:15 p.m.

CVE-2022-46698

2022-12-1519:15:26
Debian Security Bug Tracker
security-tracker.debian.org
23
logic issue
safari
tvos
icloud
windows
macos ventura
ios
ipados
watchos
sensitive information disclosure
malicious web content

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

EPSS

0.004

Percentile

72.6%

A logic issue was addressed with improved checks. This issue is fixed in Safari 16.2, tvOS 16.2, iCloud for Windows 14.1, macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing maliciously crafted web content may disclose sensitive user information.

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

EPSS

0.004

Percentile

72.6%