Lucene search
K

8351 matches found

CVE
CVE
added 2022/12/15 12:0 a.m.972 views

CVE-2022-42856

CVE-2022-42856 is a type-confusion vulnerability in WebKit/WebKitGTK that could allow arbitrary code execution when processing malicious web content. The connected documents confirm impact across WebKit-based products, including Apple WebKit (Safari) and WebKitGTK, with fixes in Safari 16.2, macO...

8.8CVSS8.7AI score0.08523EPSS
In wildExploits0References13Affected Software5
CVE
CVE
added 2022/12/15 12:0 a.m.131 views

CVE-2022-42864

CVE-2022-42864 describes a race condition in Apple's IOHID kernel path (IOHIDDevice::postElementTransaction) where element data may be read from shared memory while being validated, allowing out-of-bounds reads and writes on kernel heap. Exploitation details circulated in public proof-of-concept ...

7CVSS7.4AI score0.00856EPSS
Exploits1References14Affected Software5
Cvelist
Cvelist
added 2022/12/15 12:0 a.m.22 views

CVE-2022-42849

An access issue existed with privileged API calls. This issue was addressed with additional restrictions. This issue is fixed in iOS 16.2 and iPadOS 16.2, tvOS 16.2, watchOS 9.2. A user may be able to elevate privileges...

7.6AI score0.00252EPSS
Exploits0References6
Cvelist
Cvelist
added 2022/12/15 12:0 a.m.24 views

CVE-2022-46702

The issue was addressed with improved memory handling. This issue is fixed in iOS 16.2 and iPadOS 16.2. An app may be able to disclose kernel memory...

5.4AI score0.0024EPSS
Exploits0References2
CVE
CVE
added 2022/12/15 12:0 a.m.83 views

CVE-2022-42850

CVE-2022-42850 is an Apple iOS/iPadOS vulnerability where an app could execute arbitrary code with kernel privileges due to improved memory handling. The issue affects iOS and iPadOS and is addressed in iOS 16.2 and iPadOS 16.2. The core detail provided states the vulnerability arises from memory...

7.8CVSS7.6AI score0.00387EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2022/12/15 12:0 a.m.20 views

CVE-2022-32943

The issue was addressed with improved bounds checks. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Ventura 13.1. Shake-to-undo may allow a deleted photo to be re-surfaced without authentication...

6AI score0.00715EPSS
Exploits0References4
CVE
CVE
added 2022/12/15 12:0 a.m.189 views

CVE-2022-42852

Mode C: CVE-2022-42852 affects WebKitGTK (webkitgtk2/gtk3 WebKit) components used in Linux GTK-based deployments. The issue allows processing of malicious web content to disclose process memory. Public advisories confirm fixes in WebKitGTK-related packages (e.g., Debian webkit2gtk updates, Fedora...

6.5CVSS6.3AI score0.00939EPSS
Exploits0References13Affected Software6
CVE
CVE
added 2022/12/15 12:0 a.m.120 views

CVE-2022-42842

CVE-2022-42842 affects Apple platforms and is tied to a kernel memory handling issue that could allow remote code execution. The CVE is listed among Apple TV vulnerabilities in the Apple TV 16.2 and related macOS/iOS/watchOS updates as fixed in tvOS 16.2, macOS Monterey 12.6.2, macOS Ventura 13.1...

9.8CVSS8.1AI score0.02227EPSS
Exploits0References12Affected Software5
CVE
CVE
added 2022/12/15 12:0 a.m.105 views

CVE-2022-42865

This CVE (CVE-2022-42865) concerns Apple platforms and is addressed by enabling hardened runtime. It is fixed in iOS 16.2, iPadOS 16.2, macOS Ventura 13.1, tvOS 16.2, and watchOS 9.2. The issue allows an app to bypass Privacy preferences. The connected documents corroborate: the vulnerability is ...

5.5CVSS6AI score0.00307EPSS
Exploits0References9Affected Software5
CVE
CVE
added 2022/12/15 12:0 a.m.238 views

CVE-2022-46698

CVE-2022-46698 is a logic issue in WebKitGTK where processing malicious web content may disclose sensitive user information. Multiple connected advisories confirm this issue in WebKitGTK/WebKit2GTK components and list it among fixed CVEs after updates to WebKitGTK packages. Affected products incl...

6.5CVSS6.4AI score0.00905EPSS
Exploits0References12Affected Software7
Vulnrichment
Vulnrichment
added 2022/12/15 12:0 a.m.6 views

CVE-2022-42850

The issue was addressed with improved memory handling. This issue is fixed in iOS 16.2 and iPadOS 16.2. An app may be able to execute arbitrary code with kernel privileges...

7.2AI score0.00387EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/12/15 12:0 a.m.4 views

PT-2022-26622 · Apple · Ios +1

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 16.2 iPadOS versions prior to 16.2 Description: The issue was addressed with improved memory handling. An app may be able to break out of its sandbox. Recommendations: For iOS versions prior to 16.2, update to iOS 16.2 o...

8.6CVSS7.7AI score0.00368EPSS
Exploits0References4
Cvelist
Cvelist
added 2022/12/15 12:0 a.m.26 views

CVE-2022-46700

A memory corruption issue was addressed with improved input validation. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing maliciously crafted web content may lead to arbitrary code execution...

8.8AI score0.01204EPSS
Exploits0References13
CVE
CVE
added 2022/12/15 12:0 a.m.104 views

CVE-2022-46690

CVE-2022-46690 is an Apple family issue described as an out-of-bounds write that was addressed with improved input validation. The Apple security content lists multiple components affected across platforms (iOS, iPadOS, macOS, tvOS, watchOS), with the kernel and several subsystems (e.g., IOMobile...

7.8CVSS8AI score0.00533EPSS
Exploits0References8Affected Software5
Cvelist
Cvelist
added 2022/12/15 12:0 a.m.23 views

CVE-2022-42848

A logic issue was addressed with improved checks. This issue is fixed in iOS 16.2 and iPadOS 16.2, iOS 15.7.2 and iPadOS 15.7.2, tvOS 16.2. An app may be able to execute arbitrary code with kernel privileges...

8.2AI score0.00286EPSS
Exploits0References6
Cvelist
Cvelist
added 2022/12/15 12:0 a.m.26 views

CVE-2022-42850

The issue was addressed with improved memory handling. This issue is fixed in iOS 16.2 and iPadOS 16.2. An app may be able to execute arbitrary code with kernel privileges...

7.8AI score0.00387EPSS
Exploits0References2
CVE
CVE
added 2022/12/15 12:0 a.m.93 views

CVE-2022-42862

CVE-2022-42862 affects Apple platforms (iOS/iPadOS/macOS). The advisory notes the issue was resolved by removing the vulnerable code and is fixed in iOS 16.2 / iPadOS 16.2 and macOS Ventura 13.1, addressing an app-level privacy preferences bypass. The CVSS vector indicates a local, low-attack com...

5.5CVSS6.1AI score0.00317EPSS
Exploits0References4Affected Software3
Positive Technologies
Positive Technologies
added 2022/12/15 12:0 a.m.6 views

PT-2022-27961 · Apple · Ios +1

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 16.2 iPadOS versions prior to 16.2 Description: The issue allows an app to potentially disclose kernel memory due to inadequate memory handling. This has been addressed with improved memory handling. Recommendations: For...

5.5CVSS4.9AI score0.0024EPSS
Exploits0References4
CVE
CVE
added 2022/12/15 12:0 a.m.87 views

CVE-2022-32948

CVE-2022-32948 describes an out-of-bounds read that could allow an app to execute arbitrary code with kernel privileges. The vulnerability is associated with Apple’s Neural Engine and is fixed in Apple software updates: iOS 15.6, iPadOS 15.6, and macOS Monterey 12.5. The initial entry indicates t...

7.8CVSS7.7AI score0.00245EPSS
Exploits1References2Affected Software3
CVE
CVE
added 2022/12/15 12:0 a.m.119 views

CVE-2022-32943

The CVE-2022-32943 issue affects Apple’s Photos component and is addressed in iOS 16.2 and iPadOS 16.2, and macOS Ventura 13.1. The root cause is described as an issue addressed with improved bounds checks, preventingShake-to-undo from resurfacing a deleted photo without authentication. In the pu...

5.3CVSS5.5AI score0.00715EPSS
Exploits0References4Affected Software3
Rows per page
Query Builder