CVE-2022-42826

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Safari versions prior to 16.1 macOS versions prior to Ventura 13 iOS versions prior to 16.1 iPadOS versions prior to 16

Description A use after free issue was addressed with improved memory management. Processing maliciously crafted web content may lead to arbitrary code execution. The issue is related to the use of memory after it has been freed when handling web content, which can be exploited by a remote attacker to execute arbitrary code.

Recommendations For Safari versions prior to 16.1, update to Safari 16.1 or later. For macOS versions prior to Ventura 13, update to macOS Ventura 13 or later. For iOS versions prior to 16.1, update to iOS 16.1 or later. For iPadOS versions prior to 16, update to iPadOS 16 or later.

Fix

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2023:2256

ALSA-2023:2834

BDU:2023-00677

CESA-2023_2834

CVE-2022-42826

DLA-3308-1

DSA-5340-1

DSA-5341-1

MGASA-2023-0047

RHSA-2023:2256

RHSA-2023:2834

RHSA-2023_2256

RHSA-2023_2834

RHSA-2025:10364

SUSE-SU-2023:0397-1

SUSE-SU-2023:0489-1

SUSE-SU-2023:0490-1

SUSE-SU-2023:0573-1

SUSE-SU-2023:1681-1

USN-5867-1

Affected Products

Almalinux

Astra Linux

Centos

Linuxmint

Apple Macos

Red Hat

Safari

Suse

Ubuntu

Ios

Ipados

CVE-2022-42826

Weakness Enumeration

Related Identifiers

Affected Products

References · 108