⚠ Actively exploited

Added to CISA KEV on 2022-12-14. Federal agencies required to patch by 2023-01-04. Required action: Apply updates per vendor instructions..

CVE-2022-42856 — Type Confusion in Apple Tvos

CWE-843 — Type Confusion22 documents12 sources

Severity

8.8HIGHNVD

EPSS

0.3%

top 50.72%

CISA KEV

KEV

Added 2022-12-14

Due 2023-01-04

Exploit

Exploited in wild

Active exploitation observed

Affected products

Apple Tvos Apple Ipados Apple Iphone OS +2 more

Timeline

KEV addedDec 14

PublishedDec 15

KEV dueJan 4

Latest updateDec 3

CISA Required Action: Apply updates per vendor instructions.

Description

A type confusion issue was addressed with improved state handling. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.1.2. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.1..

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages6 packages

▶CVEListV5apple/tvosunspecified — 16.2+3

▶NVDapple/tvos< 16.2

▶NVDapple/macos< 13.1

▶NVDapple/ipados< 15.7.2

▶NVDapple/safari< 16.2

🔴Vulnerability Details

GHSA

GHSA-qh2r-8xvg-hm24: A type confusion issue was addressed with improved state handling↗2022-12-15

▶

OSV

CVE-2022-42856: A type confusion issue was addressed with improved state handling↗2022-12-15

▶

CVEList

CVE-2022-42856: A type confusion issue was addressed with improved state handling↗2022-12-15

▶

VulnCheck

Apple iOS Type Confusion Vulnerability↗2022

▶

📋Vendor Advisories

Apple

CVE-2022-42856: iOS 12.5.7↗2023-01-23

▶

Ubuntu

WebKitGTK vulnerabilities↗2023-01-09

▶

CISA

Apple iOS Type Confusion Vulnerability↗2022-12-14

▶

Red Hat

webkitgtk: processing maliciously crafted web content may lead to an arbitrary code execution↗2022-12-14

▶

Apple

CVE-2022-42856: iOS 16.2 and iPadOS 16.2↗2022-12-13

▶

🕵️Threat Intelligence

Mandiant

Intellexa’s Prolific Zero-Day Exploits Continue↗2025-12-03

▶

Mandiant

Sanctioned but Still Spying: Intellexa’s Prolific Zero-Day Exploits Continue↗2025-12-03

▶

Sentinelone

Protecting macOS | 7 Strategies for Enterprise Security in 2024↗2024-01-02

▶

Sentinelone

Protecting macOS | 7 Strategies for Enterprise Security in 2024↗2024-01-02

▶

Sentinelone

7 Ways Threat Actors Deliver macOS Malware in the Enterprise↗2023-01-09

▶