CVE-2022-42856
CVSS Score
8.8
EPSS Score
0.0%
EPSS Percentile
0th
A type confusion issue was addressed with improved state handling. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.1.2. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.1..
| Vendor | apple |
| Product | tvos |
| Ecosystems | |
| Industries | Technology |
| Published | Dec 15, 2022 |
| Last Updated | Oct 21, 2025 |
โ ๏ธ Actively Exploited โ Act Now
Get instant alerts for apple tvos
This vulnerability is actively exploited in the wild. Set up free real-time alerts so you're first to know about threats like CVE-2022-42856.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
Apple / tvOS
unspecified < 16.2
Apple / tvOS
unspecified < 13.1
Apple / tvOS
unspecified < 15.7
Apple / tvOS
unspecified < 16.1
Apple / tvOS
unspecified < 16.2
References
support.apple.com: https://support.apple.com/en-us/HT213535 support.apple.com: https://support.apple.com/en-us/HT213532 support.apple.com: https://support.apple.com/en-us/HT213531 support.apple.com: https://support.apple.com/en-us/HT213516 support.apple.com: https://support.apple.com/en-us/HT213537 seclists.org: http://seclists.org/fulldisclosure/2022/Dec/21 seclists.org: http://seclists.org/fulldisclosure/2022/Dec/23 seclists.org: http://seclists.org/fulldisclosure/2022/Dec/22 seclists.org: http://seclists.org/fulldisclosure/2022/Dec/26 seclists.org: http://seclists.org/fulldisclosure/2022/Dec/28 openwall.com: http://www.openwall.com/lists/oss-security/2022/12/26/1 security.gentoo.org: https://security.gentoo.org/glsa/202305-32 cisa.gov: https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022-42856