cbcvebase.
CVE-2022-32816
published 2022-09-23

CVE-2022-32816: The issue was addressed with improved UI handling. This issue is fixed in watchOS 8.7, tvOS 15.6, iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5. Visiting a…

PriorityP335medium6.5CVSS 3.1
AVNACLPRNUIRSUCNIHAN
EPSS
6.29%
92.7th percentile
The issue was addressed with improved UI handling. This issue is fixed in watchOS 8.7, tvOS 15.6, iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5. Visiting a website that frames malicious content may lead to UI spoofing.

Affected

15 ranges
VendorProductVersion rangeFixed in
appleios_15.6_and_ipados
appleipados< 15.615.6
appleiphone_os< 15.615.6
applemacos>= 12.0 < 12.512.5
applemacos>= unspecified < 12.512.5
applemacos_monterey
appletvos< 15.615.6
appletvos
appletvos>= unspecified < 15.615.6
applewatchos< 8.78.7
applewatchos
applewatchos>= unspecified < 8.78.7
applewatchos>= unspecified < 15.615.6
debianwebkit2gtk< webkit2gtk 2.36.6-1 (bookworm)webkit2gtk 2.36.6-1 (bookworm)
debianwpewebkit< webkit2gtk 2.36.6-1 (bookworm)webkit2gtk 2.36.6-1 (bookworm)

CVSS provenance

nvdv3.16.5MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
osv6.5MEDIUM
vendor_debian6.5MEDIUM
vendor_redhat6.5MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.