Lucene search

K
ubuntucveUbuntu.comUB:CVE-2022-32816
HistoryJul 28, 2022 - 12:00 a.m.

CVE-2022-32816

2022-07-2800:00:00
ubuntu.com
ubuntu.com
30
cve-2022-32816
ui handling
watchos
tvos
ios
ipados
macos monterey
website
malicious content
ui spoofing
unix

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

EPSS

0.001

Percentile

42.8%

The issue was addressed with improved UI handling. This issue is fixed in
watchOS 8.7, tvOS 15.6, iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5.
Visiting a website that frames malicious content may lead to UI spoofing.

OSVersionArchitecturePackageVersionFilename
ubuntu20.04noarchwebkit2gtk< 2.36.6-0ubuntu0.20.04.1UNKNOWN
ubuntu22.04noarchwebkit2gtk< 2.36.6-0ubuntu0.22.04.1UNKNOWN
ubuntu22.10noarchwebkit2gtk< 2.36.6-1UNKNOWN
ubuntu23.04noarchwebkit2gtk< 2.36.6-1UNKNOWN
ubuntu23.10noarchwebkit2gtk< 2.36.6-1UNKNOWN
ubuntu24.04noarchwebkit2gtk< 2.36.6-1UNKNOWN

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

EPSS

0.001

Percentile

42.8%