PT-2022-27973 · Apple+4 · Ipados+6

Hyeon Park

Published

2022-12-13

Updated

2023-12-27

CVE-2022-46725

CVSS v3.1

4.3

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Name of the Vulnerable Software and Affected Versions iOS versions prior to 16.4 iPadOS versions prior to 16.4

Description A spoofing issue existed in the handling of URLs, which was addressed with improved input validation. Visiting a malicious website may lead to address bar spoofing.

Recommendations For iOS versions prior to 16.4, update to iOS 16.4 to resolve the issue. For iPadOS versions prior to 16.4, update to iPadOS 16.4 to resolve the issue. As a temporary workaround, consider avoiding visits to untrusted or malicious websites until the update is applied.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CESA-2023_7055

CVE-2022-46725

DSA-5340-1

DSA-5341-1

OPENSUSE-SU-2023_4561-1

RHSA-2023:6535

RHSA-2023:7055

RHSA-2023_6535

RHSA-2023_7055

RHSA-2025:10364

SUSE-SU-2023:4558-1

SUSE-SU-2023:4559-1

SUSE-SU-2023:4561-1

SUSE-SU-2023:4651-1

Affected Products

Astra Linux

Centos

Apple Macos

Red Hat

Suse

Ios

Ipados

PT-2022-27973 · Apple+4 · Ipados+6

CVE-2022-46725

Related Identifiers

Affected Products

References · 36