CVE-2022-42817
Description
A logic issue was addressed with improved state management. This issue is fixed in iOS 15.7.1 and iPadOS 15.7.1, iOS 16.1 and iPadOS 16, watchOS 9.1. Visiting a maliciously crafted website may leak sensitive data.
CWE
- CWE-200 — CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
Affected
- Apple / iOS and iPadOS — v=unspecified <16.1 [affected]
- Apple / iOS and iPadOS — v=unspecified <15.7 [affected]
- Apple / watchOS — v=unspecified <9.1 [affected]
CVSS
- (none)
References
- https://support.apple.com/en-us/HT213489
- https://support.apple.com/en-us/HT213491
- https://support.apple.com/en-us/HT213490
Source
cvelistV5-main/cves/2022/42xxx/CVE-2022-42817.json