8351 matches found
CVE-2022-46695
Technical details about CVE-2022-46695 are not publicly provided in the connected documents. Available sources only reiterate that a UI spoofing issue was fixed in specific Apple OS versions. Monitor for updates.
CVE-2022-42866
The issue was addressed with improved handling of caches. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Ventura 13.1, tvOS 16.2, watchOS 9.2. An app may be able to read sensitive location information...
CVE-2022-46693
The CVE-2022-46693 entry describes an out-of-bounds write vulnerability addressed by input-validation improvements. Affected products/versions include tvOS 16.2, iCloud for Windows 14.1, macOS Ventura 13.1, iOS 16.2, iPadOS 16.2, and watchOS 9.2. The issue can be triggered by processing a malicio...
CVE-2022-46702
CVE-2022-46702 is an Apple iOS/iPadOS kernel memory disclosure issue addressed in iOS 16.2 and iPadOS 16.2. The publicly available sources attribute the vulnerability to memory handling weaknesses in kernel-related components, with Apple confirming that an app may disclose kernel memory. The Appl...
CVE-2022-42837
Technical details for CVE-2022-42837 are not publicly available in the provided documents. Monitor for updates.
CVE-2022-42852
The issue was addressed with improved memory handling. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing maliciously crafted web content may result in the disclosure of process memory...
CVE-2022-42861
This issue was addressed with improved checks. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Monterey 12.6.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2. An app may be able to break out of its sandbox...
CVE-2022-46695
A spoofing issue existed in the handling of URLs. This issue was addressed with improved input validation. This issue is fixed in tvOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Visiting a website that frames malicious content may lead to UI...
CVE-2022-46700
CVE-2022-46700 corresponds to a memory corruption issue in WebKitGTK/WebKit2GTK. The vulnerability arises from processing malicious web content, potentially allowing arbitrary code execution. Public advisories (Debian DSA-5308/5309, Fedora package update, AlmaLinux advisories) indicate that WebKi...
CVE-2022-42846
The issue was addressed with improved memory handling. This issue is fixed in iOS 16.2 and iPadOS 16.2, iOS 15.7.2 and iPadOS 15.7.2. Parsing a maliciously crafted video file may lead to unexpected system termination...
CVE-2022-42844
CVE-2022-42844 affects Apple iOS and iPadOS via a memory-handling issue that could allow an app to break out of its sandbox. The Red Hat and NVD entries corroborate the same description and indicate the fix is included in iOS 16.2 and iPadOS 16.2. Connected sources do not reveal additional exploi...
CVE-2022-46701
CVE-2022-46701 affects Apple TV 4K/HD running tvOS and was mitigated in tvOS 16.2. The Apple TV security content documents a Kernel bound-checks issue: “Connecting to a malicious NFS server may lead to arbitrary code execution with kernel privileges.” This is the root cause and impact described i...
CVE-2022-42845
CVE-2022-42845 is an Apple-related vulnerability addressed by memory-management improvements. The CVE affects multiple Apple OSes and devices (tvOS, macOS Monterey Big Sur Ventura, iOS/iPadOS, watchOS) and is fixed in tvOS 16.2, macOS Monterey 12.6.2, macOS Ventura 13.1, macOS Big Sur 11.7.2, iOS...
CVE-2022-42851
The issue was addressed with improved memory handling. This issue is fixed in iOS 16.2 and iPadOS 16.2, tvOS 16.2. Parsing a maliciously crafted TIFF file may lead to disclosure of user information...
CVE-2022-42805
CVE-2022-42805 is an Apple-related vulnerability where an integer overflow occurred due to insufficient input validation. The issue could allow an app to execute arbitrary code with kernel privileges. Public references indicate fixes in iOS 15.6, iPadOS 15.6, and macOS Monterey 12.5. The Red Hat ...
CVE-2022-42843
This issue was addressed with improved data protection. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Ventura 13.1, tvOS 16.2, watchOS 9.2. A user may be able to view sensitive user information...
CVE-2022-42863
A memory corruption issue was addressed with improved state management. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing maliciously crafted web content may lead to arbitrary code execution...
CVE-2022-42837
An issue existed in the parsing of URLs. This issue was addressed with improved input validation. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, watchOS 9.2. A remote user may be able to cause unexpected app termination or arbitrary code executi...
CVE-2022-42846
CVE-2022-42846 concerns a memory handling issue in the Apple graphics driver exposed when parsing a maliciously crafted video file. Affected products include iOS and iPadOS versions prior to the fixed releases (Apple indicates fixes in iOS 16.2 and iPadOS 16.2, and iOS 15.7.2 and iPadOS 15.7.2). ...
CVE-2022-42851
CVE-2022-42851 involves an information disclosure vulnerability in Apple's ImageIO/TIFF handling that is fixed in iOS 16.2, iPadOS 16.2, and tvOS 16.2. The root cause is described as improved memory handling during parsing of maliciously crafted TIFF files, which may lead to disclosure of user in...