CVE-2022-22594

Summary

A cross-origin issue in the IndexDB API was addressed with improved input validation. This issue is fixed in iOS 15.3 and iPadOS 15.3, watchOS 8.4, tvOS 15.3, Safari 15.3, macOS Monterey 12.2. A website may be able to track sensitive user information.

Affected Software

VendorProductVersion RangeStatus
AppleiOS and iPadOSunspecified < 15.3affected
ApplemacOSunspecified < 12.2affected
AppletvOSunspecified < 15.3affected
AppletvOSunspecified < 15.3affected
ApplewatchOSunspecified < 8.4affected

Weaknesses

  • A website may be able to track sensitive user information

ADP Enrichment

CVE Program Container

Additional References

References