CVE-2022-22592 Improved state management was addressed in iOS 15.3, iPadOS 15.3, watchOS 8.4, tvOS 15.3, and Safari 15.3.
This issue is addressed by allowing the X-Frame-Options response header to be set. A maliciously crafted website could exploit this vulnerability to access content protected
CVE-2022-22585 Symlinks were being validated incorrectly in iOS 15.3. This is fixed in iOS 15.3 and later.
An application may be able to access a user's files. This issue may occur through a maliciously crafted URL or through a malformed
CVE-2022-22593 An issue with memory handling was fixed in iOS 15.3, iPadOS 15.3, watchOS 8.4, tvOS 15.3, Security Update 2022-001 Catalina, and macOS Monterey 12.2.
An issue in Bluetooth was addressed with improved support for device encryption. This issue did not affect most users, as only a very small number
CVE-2022-22620 Memory management was improved in macOS Monterey 12.2.1, iOS 15.3.1, and iPadOS 15.3.1. The issue is fixed in Safari 15.3.
This issue is addressed through improved memory handling. Processing maliciously crafted web content may lead to information disclosure. Apple is aware of a report that
CVE-2022-22947 In earlier versions of the gateway, applications are vulnerable to code injection if the Gateway Actuator endpoint is enabled, exposed and unsecured.
The Gateway Actuator endpoint was previously enabled by default in versions prior to 3.1.1+ and 3.0.7+ by default. The endpoint could
Episode
00:00:00
00:00:00