Apple Ios 16.2 And Ipados vulnerabilities

CVE-2022-46694 [HIGH] CVE-2022-46694: iOS 16.2 and iPadOS 16.2 Apple Security Update: About the security content of iOS 16.2 and iPadOS 16.2 Product: iOS 16.2 and iPadOS Version: 16.2 CVE: CVE-2022-46694 Component: AppleAVD Impact: Parsing a maliciously crafted video file may lead to kernel code execution Description: An out-of-bounds write issue was addressed with improved input validation.

CVE-2022-48618 [HIGH] CVE-2022-48618: iOS 16.2 and iPadOS 16.2 Apple Security Update: About the security content of iOS 16.2 and iPadOS 16.2 Product: iOS 16.2 and iPadOS Version: 16.2 CVE: CVE-2022-48618 Component: Kernel Impact: An attacker with arbitrary read and write capability may be able to bypass Pointer Authentication. Apple is aware of a report that this issue may have been exploited against versions of iOS released before iOS 15.7.1. Description: The issue was addressed with improved c

CVE-2022-46689 [HIGH] CVE-2022-46689: iOS 16.2 and iPadOS 16.2 Apple Security Update: About the security content of iOS 16.2 and iPadOS 16.2 Product: iOS 16.2 and iPadOS Version: 16.2 CVE: CVE-2022-46689 Component: Kernel Impact: An app may be able to execute arbitrary code with kernel privileges Description: A race condition was addressed with additional validation.

CVE-2022-42863 [HIGH] CVE-2022-42863: iOS 16.2 and iPadOS 16.2 Apple Security Update: About the security content of iOS 16.2 and iPadOS 16.2 Product: iOS 16.2 and iPadOS Version: 16.2 CVE: CVE-2022-42863 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: A memory corruption issue was addressed with improved state management.

CVE-2022-42845 [HIGH] CVE-2022-42845: iOS 16.2 and iPadOS 16.2 Apple Security Update: About the security content of iOS 16.2 and iPadOS 16.2 Product: iOS 16.2 and iPadOS Version: 16.2 CVE: CVE-2022-42845 Component: Kernel Impact: An app with root privileges may be able to execute arbitrary code with kernel privileges Description: The issue was addressed with improved memory handling.

CVE-2022-42840 [HIGH] CVE-2022-42840: iOS 16.2 and iPadOS 16.2 Apple Security Update: About the security content of iOS 16.2 and iPadOS 16.2 Product: iOS 16.2 and iPadOS Version: 16.2 CVE: CVE-2022-42840 Component: Photos Impact: Shake-to-undo may allow a deleted photo to be re-surfaced without authentication Description: The issue was addressed with improved bounds checks.

CVE-2022-46716 [HIGH] CVE-2022-46716: iOS 16.2 and iPadOS 16.2 Apple Security Update: About the security content of iOS 16.2 and iPadOS 16.2 Product: iOS 16.2 and iPadOS Version: 16.2 CVE: CVE-2022-46716 Component: CVE-2022-46716

CVE-2022-42843 [MEDIUM] CVE-2022-42843: iOS 16.2 and iPadOS 16.2 Apple Security Update: About the security content of iOS 16.2 and iPadOS 16.2 Product: iOS 16.2 and iPadOS Version: 16.2 CVE: CVE-2022-42843 Component: Accounts Impact: A user may be able to view sensitive user information Description: This issue was addressed with improved data protection.

CVE-2022-42862 [MEDIUM] CVE-2022-42862: iOS 16.2 and iPadOS 16.2 Apple Security Update: About the security content of iOS 16.2 and iPadOS 16.2 Product: iOS 16.2 and iPadOS Version: 16.2 CVE: CVE-2022-42862 Component: Printing Impact: An app may be able to bypass Privacy preferences Description: This issue was addressed by removing the vulnerable code.

CVE-2022-42859 [MEDIUM] CVE-2022-42859: iOS 16.2 and iPadOS 16.2 Apple Security Update: About the security content of iOS 16.2 and iPadOS 16.2 Product: iOS 16.2 and iPadOS Version: 16.2 CVE: CVE-2022-42859 Component: CoreServices Impact: An app may be able to bypass Privacy preferences Description: Multiple issues were addressed by removing the vulnerable code.

CVE-2022-32919 [MEDIUM] CVE-2022-32919: iOS 16.2 and iPadOS 16.2 Apple Security Update: About the security content of iOS 16.2 and iPadOS 16.2 Product: iOS 16.2 and iPadOS Version: 16.2 CVE: CVE-2022-32919 Component: WebKit Impact: Visiting a website that frames malicious content may lead to UI spoofing Description: The issue was addressed with improved UI handling.

CVE-2022-48610 [MEDIUM] CVE-2022-48610: iOS 16.2 and iPadOS 16.2 Apple Security Update: About the security content of iOS 16.2 and iPadOS 16.2 Product: iOS 16.2 and iPadOS Version: 16.2 CVE: CVE-2022-48610 Component: Maps Impact: An app may be able to access user-sensitive data Description: This issue was addressed through improved state management.

CVE-2022-46702 [MEDIUM] CVE-2022-46702: iOS 16.2 and iPadOS 16.2 Apple Security Update: About the security content of iOS 16.2 and iPadOS 16.2 Product: iOS 16.2 and iPadOS Version: 16.2 CVE: CVE-2022-46702 Component: GPU Drivers Impact: An app may be able to disclose kernel memory Description: The issue was addressed with improved memory handling.

CVE-2022-46718 [MEDIUM] CVE-2022-46718: iOS 16.2 and iPadOS 16.2 Apple Security Update: About the security content of iOS 16.2 and iPadOS 16.2 Product: iOS 16.2 and iPadOS Version: 16.2 CVE: CVE-2022-46718 Component: TCC Impact: An app may be able to read sensitive location information Description: A logic issue was addressed with improved restrictions.

CVE-2022-32943 [MEDIUM] CVE-2022-32943: iOS 16.2 and iPadOS 16.2 Apple Security Update: About the security content of iOS 16.2 and iPadOS 16.2 Product: iOS 16.2 and iPadOS Version: 16.2 CVE: CVE-2022-32943 Component: Photos Impact: Shake-to-undo may allow a deleted photo to be re-surfaced without authentication Description: The issue was addressed with improved bounds checks.

CVE-2022-42865 [MEDIUM] CVE-2022-42865: iOS 16.2 and iPadOS 16.2 Apple Security Update: About the security content of iOS 16.2 and iPadOS 16.2 Product: iOS 16.2 and iPadOS Version: 16.2 CVE: CVE-2022-42865 Component: AppleMobileFileIntegrity Impact: An app may be able to bypass Privacy preferences Description: This issue was addressed by enabling hardened runtime.

CVE-2022-46695 [MEDIUM] CVE-2022-46695: iOS 16.2 and iPadOS 16.2 Apple Security Update: About the security content of iOS 16.2 and iPadOS 16.2 Product: iOS 16.2 and iPadOS Version: 16.2 CVE: CVE-2022-46695 Component: Safari Impact: Visiting a website that frames malicious content may lead to UI spoofing Description: A spoofing issue existed in the handling of URLs. This issue was addressed with improved input validation.

CVE-2022-46692 [MEDIUM] CVE-2022-46692: iOS 16.2 and iPadOS 16.2 Apple Security Update: About the security content of iOS 16.2 and iPadOS 16.2 Product: iOS 16.2 and iPadOS Version: 16.2 CVE: CVE-2022-46692 Component: WebKit Impact: Processing maliciously crafted web content may bypass Same Origin Policy Description: A logic issue was addressed with improved state management.

CVE-2022-46703 [MEDIUM] CVE-2022-46703: iOS 16.2 and iPadOS 16.2 Apple Security Update: About the security content of iOS 16.2 and iPadOS 16.2 Product: iOS 16.2 and iPadOS Version: 16.2 CVE: CVE-2022-46703 Component: Weather Impact: An app may be able to read sensitive location information Description: A logic issue was addressed with improved restrictions.

CVE-2022-46698 [MEDIUM] CVE-2022-46698: iOS 16.2 and iPadOS 16.2 Apple Security Update: About the security content of iOS 16.2 and iPadOS 16.2 Product: iOS 16.2 and iPadOS Version: 16.2 CVE: CVE-2022-46698 Component: WebKit Impact: Processing maliciously crafted web content may disclose sensitive user information Description: A logic issue was addressed with improved checks.