CVE-2022-42863

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Safari versions prior to 16.2 tvOS versions prior to 16.2 macOS Ventura versions prior to 13.1 iOS versions prior to 16.2 iPadOS versions prior to 16.2 watchOS versions prior to 9.2

Description A memory corruption issue was addressed with improved state management. Processing maliciously crafted web content may lead to arbitrary code execution.

Recommendations For Safari versions prior to 16.2, update to Safari 16.2 or later. For tvOS versions prior to 16.2, update to tvOS 16.2 or later. For macOS Ventura versions prior to 13.1, update to macOS Ventura 13.1 or later. For iOS versions prior to 16.2, update to iOS 16.2 or later. For iPadOS versions prior to 16.2, update to iPadOS 16.2 or later. For watchOS versions prior to 9.2, update to watchOS 9.2 or later.

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

ALSA-2023:2256

ALSA-2023:2834

CESA-2023_2834

CVE-2022-42863

DLA-3124-1

DSA-5240-1

DSA-5241-1

MGASA-2022-0486

OPENSUSE-SU-2022_4641-1

RHSA-2023:2256

RHSA-2023:2834

RHSA-2023_2256

RHSA-2023_2834

RHSA-2025:10364

SUSE-SU-2022:4641-1

SUSE-SU-2022:4642-1

SUSE-SU-2023:0061-1

SUSE-SU-2023:0489-1

SUSE-SU-2023:0490-1

SUSE-SU-2023:0573-1

Affected Products

Almalinux

Astra Linux

Centos

Apple Macos

Red Hat

Safari

Suse

Ios

Ipados

Macos Ventura

Tvos

Watchos

CVE-2022-42863

Weakness Enumeration

Related Identifiers

Affected Products

References · 113