CVE-2022-42863

Summary

A memory corruption issue was addressed with improved state management. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing maliciously crafted web content may lead to arbitrary code execution.

Affected Software

VendorProductVersion RangeStatus
AppletvOSunspecified < 16.2affected
AppletvOSunspecified < 13.1affected
AppletvOSunspecified < 16.2affected
ApplewatchOSunspecified < 9.2affected
ApplewatchOSunspecified < 16.2affected

Weaknesses

  • Processing maliciously crafted web content may lead to arbitrary code execution

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References