CVE-2022-42813
Summary
| CVE | CVE-2022-42813 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2022-11-01 20:15:00 UTC |
| Updated | 2022-11-03 12:54:00 UTC |
| Description | A certificate validation issue existed in the handling of WKWebView. This issue was addressed with improved validation. This issue is fixed in tvOS 16.1, iOS 16.1 and iPadOS 16, macOS Ventura 13, watchOS 9.1. Processing a maliciously crafted certificate may lead to arbitrary code execution. |
Risk And Classification
Problem Types: CWE-295
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| About the security content of watchOS 9.1 - Apple Support | MISC | support.apple.com | |
| About the security content of tvOS 16.1 - Apple Support | MISC | support.apple.com | |
| About the security content of macOS Ventura 13 - Apple Support | MISC | support.apple.com | |
| About the security content of iOS 16.1 and iPadOS 16 - Apple Support | MISC | support.apple.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 610441 Apple iOS 16.1 and iPadOS 16 Security Update Missing