Home > Vulnerability Database > CVE-2022-42852

Mend.io Vulnerability Database

CVE-2022-42852

Date: December 14, 2022

The issue was addressed with improved memory handling. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing maliciously crafted web content may result in the disclosure of process memory.

Severity Score

6.5

Related Resources (17)

Url: http://seclists.org/fulldisclosure/2022/Dec/23

Url: https://access.redhat.com/security/cve/CVE-2022-42852

Url: http://seclists.org/fulldisclosure/2022/Dec/21

Url: http://seclists.org/fulldisclosure/2022/Dec/20

Url: https://security-tracker.debian.org/tracker/CVE-2022-42852

Url: https://nvd.nist.gov/vuln/detail/CVE-2022-42852

Url: https://support.apple.com/en-us/HT213530

Url: http://seclists.org/fulldisclosure/2022/Dec/27

Url: http://seclists.org/fulldisclosure/2022/Dec/26

Url: https://support.apple.com/en-us/HT213531

Url: https://support.apple.com/en-us/HT213532

Url: https://security.gentoo.org/glsa/202305-32

Url: https://support.apple.com/en-us/HT213537

Url: https://support.apple.com/en-us/HT213535

Url: https://support.apple.com/en-us/HT213536

Url: http://seclists.org/fulldisclosure/2022/Dec/28

Url: https://www.mend.io/vulnerability-database/CVE-2022-42852

Severity Score

6.5

Weakness Type (CWE)

Exposure of Sensitive Information to an Unauthorized Actor

CWE-200

Insufficient Information

NVD-CWE-noinfo

CVSS v3.1

Base Score:	6.5
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	REQUIRED
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	NONE
Availability (A):	NONE

Mend.io Vulnerability Database

We found results for “”

CVE-2022-42852

Date: December 14, 2022

Severity Score

Related Resources (17)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?