Topic

Safari

A collection of 12 issues

CVE-2022-22592 Improved state management was addressed in iOS 15.3, iPadOS 15.3, watchOS 8.4, tvOS 15.3, and Safari 15.3.

This issue is addressed by allowing the X-Frame-Options response header to be set. A maliciously crafted website could exploit this vulnerability to access content protected against cross-origin access restrictions. On iOS and macOS, this issue is mitigated with improved state management. Exploitation of this issue may allow remote code execution.
2 min read
Subscribe to CVE.news
Don’t miss out on the latest issues. Sign up now to get access to the library of members-only issues.
jamie@example.com
Subscribe