First published: Tue Dec 13 2022(Updated: )
A logic issue was addressed with improved checks. This issue is fixed in Safari 16.2, tvOS 16.2, iCloud for Windows 14.1, macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing maliciously crafted web content may disclose sensitive user information.
Credit: Dohyun Lee @l33d0hyun SSD Secure Disclosure LabsKorea Univ. Dohyun Lee @l33d0hyun SSD Secure Disclosure LabsKorea Univ. product-security@apple.com Dohyun Lee @l33d0hyun SSD Secure Disclosure LabsKorea Univ. product-security@apple.com
Affected Software | Affected Version | How to fix |
---|---|---|
Apple iCloud for Windows | <14.1 | 14.1 |
Apple tvOS | <16.2 | 16.2 |
Apple Safari | <16.2 | 16.2 |
Apple Icloud Windows | <14.0 | |
Apple Safari | <16.2 | |
Apple iPadOS | <16.2 | |
Apple iPhone OS | <16.2 | |
Apple macOS | <13.1 | |
Apple tvOS | <16.2 | |
Apple watchOS | <9.2 | |
Apple watchOS | <9.2 | 9.2 |
Apple macOS Ventura | <13.1 | 13.1 |
Apple iOS | <16.2 | 16.2 |
Apple iPadOS | <16.2 | 16.2 |
<14.0 | ||
<16.2 | ||
<16.2 | ||
<16.2 | ||
<13.1 | ||
<16.2 | ||
<9.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Appears in the following advisories)
(Found alongside the following vulnerabilities)
CVE-2022-46698 is a vulnerability in WebKit that was addressed with improved checks.
CVE-2022-46698 affects Apple iOS, Apple iPadOS, Apple macOS Ventura, Apple watchOS, Apple tvOS, Apple iCloud for Windows, and Apple Safari.
The severity of CVE-2022-46698 is not mentioned in the available information.
To fix CVE-2022-46698, update to the latest version of the affected software, as mentioned in the Apple support articles: [link1], [link2], [link3].
You can find more information about CVE-2022-46698 in the following Apple support articles: [link1], [link2], [link3].