CVE-2022-42813

Published: Nov 1, 2022

Modified: Apr 22, 2025

PUBLISHED

Description

A certificate validation issue existed in the handling of WKWebView. This issue was addressed with improved validation. This issue is fixed in tvOS 16.1, iOS 16.1 and iPadOS 16, macOS Ventura 13, watchOS 9.1. Processing a maliciously crafted certificate may lead to arbitrary code execution.

Vendor	Product	Versions
Apple	macOS	affected `unspecified - < 13`
Apple	tvOS	affected `unspecified - < 16.1`
Apple	tvOS	affected `unspecified - < 16.1`
Apple	watchOS	affected `unspecified - < 9.1`

References

https://support.apple.com/en-us/HT213488

https://support.apple.com/en-us/HT213489

https://support.apple.com/en-us/HT213492

https://support.apple.com/en-us/HT213491

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-42813

Description

Affected Products

References