VDB
VAR-202212-1532
VAR-202212-1532
PUBLISHED
CVSS 8.800000190734863 HIGH
A memory consumption issue was addressed with improved memory handling. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing maliciously crafted web content may lead to arbitrary code execution.
Risk Scores
CVSS v3.1
8.800000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | watchOS | unspecified, unspecified |
| Apple | tvOS | *, unspecified, unspecified |
Timeline
- Apr 11, 2022 CVE Published
- Dec 19, 2022 PoC Published
- Apr 5, 2023 PoC Published
- Feb 13, 2025 PoC Published
- Mar 28, 2025 PoC Published
References
- https://support.apple.com/en-us/HT213535 url
- https://support.apple.com/en-us/HT213532 url
- https://support.apple.com/en-us/HT213530 url
- https://support.apple.com/en-us/HT213531 url
- https://support.apple.com/en-us/HT213536 url
- https://support.apple.com/en-us/HT213537 url
- 20221220 APPLE-SA-2022-12-13-1 iOS 16.2 and iPadOS 16.2 mailing-list
- 20221220 APPLE-SA-2022-12-13-2 iOS 15.7.2 and iPadOS 15.7.2 mailing-list
- 20221220 APPLE-SA-2022-12-13-4 macOS Ventura 13.1 mailing-list
- 20221220 APPLE-SA-2022-12-13-7 tvOS 16.2 mailing-list
- 20221220 APPLE-SA-2022-12-13-9 Safari 16.2 mailing-list
- 20221220 APPLE-SA-2022-12-13-8 watchOS 9.2 mailing-list
- https://security.gentoo.org/glsa/202305-32 url