6.5

CVE-2022-22592

EPSS 0.16%
Veröffentlicht 18.03.2022 18:15:12
Zuletzt bearbeitet 21.11.2024 06:47:05
Quelle product-security@apple.com
Teams Watchlist Login
Unerledigt Login

A logic issue was addressed with improved state management. This issue is fixed in iOS 15.3 and iPadOS 15.3, watchOS 8.4, tvOS 15.3, Safari 15.3, macOS Monterey 12.2. Processing maliciously crafted web content may prevent Content Security Policy from being enforced.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 0 Referenzen 9

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Apple ≫ Safari Version < 15.3

Apple ≫ Iphone Version < 15.3

Apple ≫ iPadOS Version < 15.3

Apple ≫ macOS Version >= 12.0.0 < 12.2

Apple ≫ tvOS Version < 15.3

Apple ≫ watchOS Version < 8.4

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.16%	0.374

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.5	2.8	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:P/A:N

https://support.apple.com/en-us/HT213053

Vendor Advisory

https://support.apple.com/en-us/HT213054

Vendor Advisory

https://support.apple.com/en-us/HT213057

Vendor Advisory

https://support.apple.com/en-us/HT213059

Vendor Advisory

https://security.gentoo.org/glsa/202208-39

Third Party Advisory

https://support.apple.com/en-us/HT213058

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2022-22592

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-22592

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-22592

EUVD