Unrated severityCISA KEVNVD Advisory· Published Aug 24, 2022· Updated Oct 21, 2025
CVE-2022-32893
CVE-2022-32893
Description
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 15.6.1 and iPadOS 15.6.1, macOS Monterey 12.5.1, Safari 15.6.1. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
38=15.6.1+ 1 more
- (no CPE)range: =15.6.1
- (no CPE)range: unspecified
- Range: =12.5.1
- Range: =15.6.1
- osv-coords32 versionspkg:rpm/almalinux/webkit2gtk3pkg:rpm/almalinux/webkit2gtk3-develpkg:rpm/almalinux/webkit2gtk3-jscpkg:rpm/almalinux/webkit2gtk3-jsc-develpkg:rpm/opensuse/webkit2gtk3&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/webkit2gtk3&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/webkit2gtk3-soup2&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/webkit2gtk4&distro=openSUSE%20Leap%2015.4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Enterprise%20Storage%206pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCLpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-BCLpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-BCLpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20OpenStack%20Cloud%209pkg:rpm/suse/webkit2gtk3&distro=SUSE%20OpenStack%20Cloud%20Crowbar%209pkg:rpm/suse/webkit2gtk3-soup2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP4pkg:rpm/suse/webkit2gtk4&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP4
< 2.36.7-1.el8_6+ 31 more
- (no CPE)range: < 2.36.7-1.el8_6
- (no CPE)range: < 2.36.7-1.el8_6
- (no CPE)range: < 2.36.7-1.el8_6
- (no CPE)range: < 2.36.7-1.el8_6
- (no CPE)range: < 2.36.7-150200.44.1
- (no CPE)range: < 2.36.7-150400.4.12.1
- (no CPE)range: < 2.36.7-150400.4.12.1
- (no CPE)range: < 2.36.7-150400.4.12.1
- (no CPE)range: < 2.36.7-150000.3.112.2
- (no CPE)range: < 2.36.7-150000.3.112.2
- (no CPE)range: < 2.36.7-150000.3.112.2
- (no CPE)range: < 2.36.7-150000.3.112.2
- (no CPE)range: < 2.36.7-150000.3.112.2
- (no CPE)range: < 2.36.7-150200.44.1
- (no CPE)range: < 2.36.7-150200.44.1
- (no CPE)range: < 2.36.7-150400.4.12.1
- (no CPE)range: < 2.36.7-2.110.1
- (no CPE)range: < 2.36.7-2.110.1
- (no CPE)range: < 2.36.7-2.110.1
- (no CPE)range: < 2.36.7-2.110.1
- (no CPE)range: < 2.36.7-150000.3.112.2
- (no CPE)range: < 2.36.7-150000.3.112.2
- (no CPE)range: < 2.36.7-150000.3.112.2
- (no CPE)range: < 2.36.7-2.110.1
- (no CPE)range: < 2.36.7-2.110.1
- (no CPE)range: < 2.36.7-150000.3.112.2
- (no CPE)range: < 2.36.7-150000.3.112.2
- (no CPE)range: < 2.36.7-2.110.1
- (no CPE)range: < 2.36.7-2.110.1
- (no CPE)range: < 2.36.7-2.110.1
- (no CPE)range: < 2.36.7-150400.4.12.1
- (no CPE)range: < 2.36.7-150400.4.12.1
- Range: unspecified
- Range: unspecified
Patches
Vulnerability mechanics
References
17- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7SETAAXEPGNBMYKTUDFEZHS5LGSQ64QL/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YKJGV2EXVMYQW3OAJNI4WUTKKVMD2YYK/mitrevendor-advisory
- security.gentoo.org/glsa/202208-39mitrevendor-advisory
- www.debian.org/security/2022/dsa-5219mitrevendor-advisory
- www.debian.org/security/2022/dsa-5220mitrevendor-advisory
- seclists.org/fulldisclosure/2022/Aug/16mitremailing-list
- seclists.org/fulldisclosure/2022/Oct/49mitremailing-list
- www.openwall.com/lists/oss-security/2022/08/25/5mitremailing-list
- www.openwall.com/lists/oss-security/2022/08/26/2mitremailing-list
- www.openwall.com/lists/oss-security/2022/08/29/1mitremailing-list
- www.openwall.com/lists/oss-security/2022/08/29/2mitremailing-list
- www.openwall.com/lists/oss-security/2022/09/02/10mitremailing-list
- www.openwall.com/lists/oss-security/2022/09/13/1mitremailing-list
- lists.debian.org/debian-lts-announce/2022/08/msg00019.htmlmitremailing-list
- support.apple.com/en-us/HT213412mitre
- support.apple.com/en-us/HT213413mitre
- support.apple.com/en-us/HT213414mitre
News mentions
0No linked articles in our index yet.