CVE-2022-32885
published 2023-05-08CVE-2022-32885: A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5, Safari 15.6. Processing…
high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5, Safari 15.6. Processing maliciously crafted web content may lead to arbitrary code execution
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios_15.6_and_ipados | — | — |
| apple | ipados | < 15.6 | 15.6 |
| apple | iphone_os | < 15.6 | 15.6 |
| apple | macos | >= 12.0.0 < 12.5 | 12.5 |
| apple | macos | >= unspecified < 12.5 | 12.5 |
| apple | macos | >= unspecified < 15.6 | 15.6 |
| apple | macos_monterey | — | — |
| apple | safari | < 15.6 | 15.6 |
| apple | safari | — | — |
| debian | webkit2gtk | < webkit2gtk 2.40.1-1 (bookworm) | webkit2gtk 2.40.1-1 (bookworm) |
| debian | wpewebkit | < webkit2gtk 2.40.1-1 (bookworm) | webkit2gtk 2.40.1-1 (bookworm) |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv8.8HIGH