CVE-2022-42852
MEDIUM6.5EPSS 0.99%wpewebkit - security update
Published: 12/15/2022Modified: 4/28/2026
Description
The issue was addressed with improved memory handling. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing maliciously crafted web content may result in the disclosure of process memory.
Affected packages (5)
- Debian/webkit2gtkfrom 0, < 2.38.3-1~deb11u1
- Debian/webkit2gtkfrom 0, < 2.38.3-1~deb10u1
- Debian/webkit2gtkfrom 0, < 2.38.3-1~deb11u1
- Debian/wpewebkitfrom 0, < 2.38.3-1~deb11u1
- Debian/wpewebkitfrom 0, < 2.38.3-1~deb11u1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM6.5 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N |