CVE-2022-42856

Description from NVD

A type confusion issue was addressed with improved state handling. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.1.2. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.1..

Information Acquisition Date:2023-01-26T08:13Z
CVSS 2.0: 0.0 None CVSS 3.x: 8.8 HIGH

▼ CVSS3 Vec CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

NVD References

 https://support.apple.com/en-us/HT213531
     source:MISC
     tags:Release Notes    Vendor Advisory    
 https://support.apple.com/en-us/HT213532
     source:MISC
     tags:Release Notes    Vendor Advisory    
 https://support.apple.com/en-us/HT213537
     source:MISC
     tags:Release Notes    Vendor Advisory    
 https://support.apple.com/en-us/HT213516
     source:MISC
     tags:Release Notes    Vendor Advisory    
 https://support.apple.com/en-us/HT213535
     source:MISC
     tags:Release Notes    Vendor Advisory    
 20221220 APPLE-SA-2022-12-13-7 tvOS 16.2
     source:FULLDISC
     tags:Mailing List    Third Party Advisory    
 20221220 APPLE-SA-2022-12-13-9 Safari 16.2
     source:FULLDISC
     tags:Mailing List    Third Party Advisory    
 20221220 APPLE-SA-2022-12-13-2 iOS 15.7.2 and iPadOS 15.7.2
     source:FULLDISC
     tags:Mailing List    Third Party Advisory    
 20221220 APPLE-SA-2022-12-13-3 iOS 16.1.2
     source:FULLDISC
     tags:Mailing List    Third Party Advisory    
 20221220 APPLE-SA-2022-12-13-4 macOS Ventura 13.1
     source:FULLDISC
     tags:Mailing List    Third Party Advisory    
 [oss-security] 20221226 WebKitGTK and WPE WebKit Security Advisory WSA-2022-0011
     source:MLIST
     tags:Mailing List    Third Party Advisory    

Description from Forti

About the security content of macOS Ventura 13 1

Information Acquisition Date:2023/01/25

Affected Products

Impact

Recommended Actions

References

Refer to Information on External Sites

CVE InfomationExploits or more Infomation
mitreEXPLOIT DATABASE
NVD0day.today
vulmon.comgithub
CVE DetailsTwitter
JVN ENG JPN
Reconshell

Software Tag: Apple(2 tweets) iOS(3 tweets)

List of frequently cited URLs

URLNum of Times Referred to
https://alerts.vulmon.com/?utm_source=twitter&utm_medium=so...242
https://cvetrends.com50
https://securityaffairs.com/141221/security/apple-backporte...12
https://www.helpnetsecurity.com/2023/01/24/cve-2022-42856-i...9
https://applech2.com/archives/20230124-ios-12-5-7-for-cve-2...7
https://www.bleepingcomputer.com/news/apple/apple-fixes-act...5
https://support.apple.com/en-us/HT2135974
https://securityonline.info/apple-warns-of-0-day-cve-2022-4...4
https://ift.tt/X4AJLSz3
https://twitter.com/BleepinComputer/status/16176072331178557463
https://tweetedtimes.com/thinksnews?s=tnp3
https://www.cibertip.com/vulnerabilidades/cve-2022-42856-ap...3
https://voidistaff.github.io/safari/2023/02/20/CVE-2022-428...3

▼ Show Information from Twitter(11)

List of frequently cited URLs

URLNum of Times Referred to
alerts.vulmon.com242
cvetrends.com50
securityaffairs.com12
www.helpnetsecurity.com9
applech2.com7
www.bleepingcomputer.com5
support.apple.com4
securityonline.info4
ift.tt3
twitter.com3
tweetedtimes.com3
www.cibertip.com3
voidistaff.github.io3

▼ Show Information from Twitter(11)

GitHub Search Results: Up to 10
NameURL
Live-Hack-CVE/CVE-2022-42856 https://github.com/Live-Hack-CVE/CVE-2022-42856
GitHub Search Results: Up to 10
NameURL
Live-Hack-CVE/CVE-2022-42856 github.com
2023/04/17 Score : 0
Added Har-sia Database : 2022/12/14
Last Modified : 2023/04/17
Highest Scored Date : 2023/01/24
Highest Score : 79