PT-2022-21539 · Apple · Safari+3
Michael
·
Published
2022-09-12
·
Updated
2022-12-08
·
CVE-2022-32868
CVSS v3.1
4.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Safari versions prior to 16
iOS versions prior to 16
iOS versions prior to 15.7
iPadOS versions prior to 15.7
Description
A logic issue was addressed with improved state management, which could allow a website to track users through Safari web extensions.
Recommendations
For Safari versions prior to 16, update to Safari 16 to resolve the issue.
For iOS versions prior to 16, update to iOS 16 to resolve the issue.
For iOS versions prior to 15.7, update to iOS 15.7 to resolve the issue.
For iPadOS versions prior to 15.7, update to iPadOS 15.7 to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Apple Macos
Safari
Ios
Ipados