CVE-2022-42867

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2022-42867

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-42867.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2022-42867

Downstream

DEBIAN-CVE-2022-42867

DLA-3274-1

DSA-5308-1

DSA-5309-1

RHSA-2023:2256

RHSA-2023:2834

RHSA-2025:10364

SUSE-SU-2022:4641-1

SUSE-SU-2022:4642-1

SUSE-SU-2023:0061-1

SUSE-SU-2023:0489-1

SUSE-SU-2023:0490-1

SUSE-SU-2023:0573-1

UBUNTU-CVE-2022-42867

USN-5797-1

Related

Published

2022-12-15T19:15:25Z

Modified

2025-08-09T20:01:26Z

Severity

8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

A use after free issue was addressed with improved memory management. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing maliciously crafted web content may lead to arbitrary code execution.

References

Affected packages