github - ghsa-3p9p-h6x6-85gg

ghsa-3p9p-h6x6-85gg

Vulnerability from github

Published

2022-12-15 21:30

Modified

2022-12-20 03:30

Severity

6.5 (Medium) - CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Details

The issue was addressed with improved memory handling. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing maliciously crafted web content may result in the disclosure of process memory.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2022-42852"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2022-12-15T19:15:00Z",
    "severity": "MODERATE"
  },
  "details": "The issue was addressed with improved memory handling. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing maliciously crafted web content may result in the disclosure of process memory.",
  "id": "GHSA-3p9p-h6x6-85gg",
  "modified": "2022-12-20T03:30:28Z",
  "published": "2022-12-15T21:30:30Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42852"
    },
    {
      "type": "WEB",
      "url": "https://security.gentoo.org/glsa/202305-32"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/en-us/HT213530"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/en-us/HT213531"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/en-us/HT213532"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/en-us/HT213535"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/en-us/HT213536"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/en-us/HT213537"
    },
    {
      "type": "WEB",
      "url": "http://seclists.org/fulldisclosure/2022/Dec/20"
    },
    {
      "type": "WEB",
      "url": "http://seclists.org/fulldisclosure/2022/Dec/21"
    },
    {
      "type": "WEB",
      "url": "http://seclists.org/fulldisclosure/2022/Dec/23"
    },
    {
      "type": "WEB",
      "url": "http://seclists.org/fulldisclosure/2022/Dec/26"
    },
    {
      "type": "WEB",
      "url": "http://seclists.org/fulldisclosure/2022/Dec/27"
    },
    {
      "type": "WEB",
      "url": "http://seclists.org/fulldisclosure/2022/Dec/28"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
      "type": "CVSS_V3"
    }
  ]
}

cve-2022-42852

Vulnerability from cvelistv5

Published

2022-12-15 00:00

Modified

2024-08-03 13:19

Severity

Summary

References

URL	Tags
https://support.apple.com/en-us/HT213535
https://support.apple.com/en-us/HT213532
https://support.apple.com/en-us/HT213530
https://support.apple.com/en-us/HT213531
https://support.apple.com/en-us/HT213536
https://support.apple.com/en-us/HT213537
http://seclists.org/fulldisclosure/2022/Dec/20	mailing-list
http://seclists.org/fulldisclosure/2022/Dec/21	mailing-list
http://seclists.org/fulldisclosure/2022/Dec/23	mailing-list
http://seclists.org/fulldisclosure/2022/Dec/26	mailing-list
http://seclists.org/fulldisclosure/2022/Dec/28	mailing-list
http://seclists.org/fulldisclosure/2022/Dec/27	mailing-list
https://security.gentoo.org/glsa/202305-32

Impacted products

Vendor	Product
Apple	tvOS
Apple	tvOS
Apple	tvOS
Apple	tvOS
Apple	watchOS
Apple	watchOS

Show details on NVD website