CVE-2022-42849

Summary

An access issue existed with privileged API calls. This issue was addressed with additional restrictions. This issue is fixed in iOS 16.2 and iPadOS 16.2, tvOS 16.2, watchOS 9.2. A user may be able to elevate privileges.

Affected Software

VendorProductVersion RangeStatus
AppletvOSunspecified < 16.2affected
AppletvOSunspecified < 16.2affected
ApplewatchOSunspecified < 9.2affected

Weaknesses

  • A user may be able to elevate privileges

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References