CVE-2022-42837
published 2022-12-15CVE-2022-42837: An issue existed in the parsing of URLs. This issue was addressed with improved input validation. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS…
PriorityP278critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
ITWVulnCheck KEV
Exploited in the wild
EPSS
2.06%
79.0th percentile
An issue existed in the parsing of URLs. This issue was addressed with improved input validation. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, watchOS 9.2. A remote user may be able to cause unexpected app termination or arbitrary code execution.
Affected
15 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios_15.7.2_and_ipados | — | — |
| apple | ios_16.2_and_ipados | — | — |
| apple | ipados | >= 15.0 < 15.7.2 | 15.7.2 |
| apple | ipados | >= 16.0 < 16.2 | 16.2 |
| apple | iphone_os | >= 15.0 < 15.7.2 | 15.7.2 |
| apple | iphone_os | >= 16.0 < 16.2 | 16.2 |
| apple | macos | — | — |
| apple | macos | >= unspecified < 13.1 | 13.1 |
| apple | macos | >= unspecified < 16.2 | 16.2 |
| apple | macos | >= unspecified < 15.7 | 15.7 |
| apple | macos_ventura | — | — |
| apple | tvos16.2 | — | — |
| apple | watchos | < 9.2 | 9.2 |
| apple | watchos | — | — |
| apple | watchos | >= unspecified < 9.2 | 9.2 |
Detection & IOCsextracted from sources · hover to see the quote
- →Vulnerable component on iOS 15.7.2/iPadOS 15.7.2 is IOHIDFamily — monitor for unexpected kernel-privilege escalation via HID-related kernel extensions ↗
- →Vulnerable component on iOS 16.2/iPadOS 16.2, watchOS 9.2, macOS Ventura 13.1, and tvOS 16.2 is IOMobileFrameBuffer — monitor for out-of-bounds write attempts targeting IOMobileFrameBuffer kernel extension ↗
- →On macOS Ventura, the IOMobileFrameBuffer vulnerability manifests as an out-of-bounds access — monitor for anomalous bounds-checking failures in IOMobileFrameBuffer ↗
- ·The NVD description references URL parsing as the attack vector, but Apple's own advisories describe kernel-level out-of-bounds write/access and race condition primitives — treat the NVD description with caution when scoping detection ↗
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
vulncheck9.8CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Apple
CVE-2022-42837: iOS 15.7.2 and iPadOS 15.7.2
vendor_apple·2022-12-13·CVSS 9.8
CVE-2022-42837 [CRITICAL] CVE-2022-42837: iOS 15.7.2 and iPadOS 15.7.2
Apple Security Update: About the security content of iOS 15.7.2 and iPadOS 15.7.2
Product: iOS 15.7.2 and iPadOS
Version: 15.7.2
CVE: CVE-2022-42837
Component: IOHIDFamily
Impact: An app may be able to execute arbitrary code with kernel privileges
Description: A race condition was addressed with improved state handling.
Apple
CVE-2022-42837: iOS 16.2 and iPadOS 16.2
vendor_apple·2022-12-13·CVSS 9.8
CVE-2022-42837 [CRITICAL] CVE-2022-42837: iOS 16.2 and iPadOS 16.2
Apple Security Update: About the security content of iOS 16.2 and iPadOS 16.2
Product: iOS 16.2 and iPadOS
Version: 16.2
CVE: CVE-2022-42837
Component: IOMobileFrameBuffer
Impact: An app may be able to execute arbitrary code with kernel privileges
Description: An out-of-bounds write issue was addressed with improved input validation.
Apple
CVE-2022-42837: watchOS 9.2
vendor_apple·2022-12-13·CVSS 9.8
CVE-2022-42837 [CRITICAL] CVE-2022-42837: watchOS 9.2
Apple Security Update: About the security content of watchOS 9.2
Product: watchOS
Version: 9.2
CVE: CVE-2022-42837
Component: IOMobileFrameBuffer
Impact: An app may be able to execute arbitrary code with kernel privileges
Description: An out-of-bounds write issue was addressed with improved input validation.
Apple
CVE-2022-42837: macOS Ventura 13.1
vendor_apple·2022-12-13·CVSS 9.8
CVE-2022-42837 [CRITICAL] CVE-2022-42837: macOS Ventura 13.1
Apple Security Update: About the security content of macOS Ventura 13.1
Product: macOS Ventura
Version: 13.1
CVE: CVE-2022-42837
Component: IOMobileFrameBuffer
Impact: An app may be able to execute arbitrary code with kernel privileges
Description: An out-of-bounds access issue was addressed with improved bounds checking.
Apple
CVE-2022-42837: tvOS16.2
vendor_apple·2022-12-13·CVSS 9.8
CVE-2022-42837 [CRITICAL] CVE-2022-42837: tvOS16.2
Apple Security Update: About the security content of tvOS16.2
Product: tvOS16.2
CVE: CVE-2022-42837
Component: IOMobileFrameBuffer
Impact: An app may be able to execute arbitrary code with kernel privileges
Description: An out-of-bounds write issue was addressed with improved input validation.
GHSA
GHSA-qg7p-gqjj-g2r8: An issue existed in the parsing of URLs
ghsa_unreviewed·2022-12-15
CVE-2022-42837 [CRITICAL] CWE-20 GHSA-qg7p-gqjj-g2r8: An issue existed in the parsing of URLs
An issue existed in the parsing of URLs. This issue was addressed with improved input validation. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, watchOS 9.2. A remote user may be able to cause unexpected app termination or arbitrary code execution.
VulnCheck
iOS and iPadOS, macOS Ventura, iOS and iPadOS, and watchOS 9.2 URL Parsing Vulnerability
vulncheck·2022·CVSS 9.8
CVE-2022-42837 [CRITICAL] iOS and iPadOS, macOS Ventura, iOS and iPadOS, and watchOS 9.2 URL Parsing Vulnerability
iOS and iPadOS, macOS Ventura, iOS and iPadOS, and watchOS 9.2 URL Parsing Vulnerability
An issue existed in the parsing of URLs. This issue was addressed with improved input validation. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, watchOS 9.2. A remote user may be able to cause unexpected app termination or arbitrary code execution.
Affected: Apple ipados
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://support.apple.com/kb/HT213531
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://seclists.org/fulldisclosure/2022/Dec/20http://seclists.org/fulldisclosure/2022/Dec/21http://seclists.org/fulldisclosure/2022/Dec/23http://seclists.org/fulldisclosure/2022/Dec/27https://support.apple.com/en-us/HT213530https://support.apple.com/en-us/HT213531https://support.apple.com/en-us/HT213532https://support.apple.com/en-us/HT213536https://support.apple.com/kb/HT213535http://seclists.org/fulldisclosure/2022/Dec/20http://seclists.org/fulldisclosure/2022/Dec/21http://seclists.org/fulldisclosure/2022/Dec/23http://seclists.org/fulldisclosure/2022/Dec/27https://support.apple.com/en-us/HT213530https://support.apple.com/en-us/HT213531https://support.apple.com/en-us/HT213532https://support.apple.com/en-us/HT213536https://support.apple.com/kb/HT213535
2022-12-15
Published
Exploited in the wild