Lucene search
HistoryDec 15, 2022 - 7:15 p.m.
CVE-2022-42851
cve-2022-42851
memory handling
ios 16.2
ipados 16.2
tvos 16.2
tiff file
user information disclosure
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
0.001 Low
EPSS
Percentile
29.1%
The issue was addressed with improved memory handling. This issue is fixed in iOS 16.2 and iPadOS 16.2, tvOS 16.2. Parsing a maliciously crafted TIFF file may lead to disclosure of user information.
Affected configurations
Node
appleipadosRange<16.2
ORappleiphone_osRange<16.2
ORappletvosRange<16.2
Related
cve
cve
CVE-2022-42851
2022-12-15 19:15:24
prion
prion
Information disclosure
2022-12-15 19:15:00
cvelist
cvelist
CVE-2022-42851
2022-12-15 00:00:00
apple
apple
About the security content of tvOS 16.2
2022-12-13 00:00:00
About the security content of iOS 16.2 and iPadOS 16.2
2022-12-13 00:00:00
nessus
nessus
Apple TV < 16.2 Multiple Vulnerabilities (HT213535)
2023-01-06 00:00:00
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
0.001 Low
EPSS
Percentile
29.1%
Related for NVD:CVE-2022-42851