CVE-2022-32891
published 2023-02-27CVE-2022-32891: The issue was addressed with improved UI handling. This issue is fixed in Safari 16, tvOS 16, watchOS 9, iOS 16. Visiting a website that frames malicious…
medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
The issue was addressed with improved UI handling. This issue is fixed in Safari 16, tvOS 16, watchOS 9, iOS 16. Visiting a website that frames malicious content may lead to UI spoofing.
Affected
14 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios | — | — |
| apple | ios | >= unspecified < 16 | 16 |
| apple | iphone_os | < 16.0 | 16.0 |
| apple | safari | < 16.0 | 16.0 |
| apple | safari | — | — |
| apple | safari | >= unspecified < 16 | 16 |
| apple | tvos | < 16.0 | 16.0 |
| apple | tvos | — | — |
| apple | watchos | < 9.0 | 9.0 |
| apple | watchos | >= unspecified < 9 | 9 |
| apple | watchos | >= unspecified < 16 | 16 |
| apple | watchos_9 | — | — |
| debian | webkit2gtk | < webkit2gtk 2.36.6-1 (bookworm) | webkit2gtk 2.36.6-1 (bookworm) |
| debian | wpewebkit | < webkit2gtk 2.36.6-1 (bookworm) | webkit2gtk 2.36.6-1 (bookworm) |
CVSS provenance
nvdv3.16.1MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
osv6.1MEDIUM