CVE-2022-42817

Summary

A logic issue was addressed with improved state management. This issue is fixed in iOS 15.7.1 and iPadOS 15.7.1, iOS 16.1 and iPadOS 16, watchOS 9.1. Visiting a maliciously crafted website may leak sensitive data.

Affected Software

VendorProductVersion RangeStatus
AppleiOS and iPadOSunspecified < 16.1affected
AppleiOS and iPadOSunspecified < 15.7affected
ApplewatchOSunspecified < 9.1affected

Weaknesses

  • Visiting a maliciously crafted website may leak sensitive data

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References