Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2022-32891HistoryFeb 27, 2023 - 8:15 p.m.
CVE-2022-32891
2023-02-2720:15:12
Debian Security Bug Tracker
security-tracker.debian.org
34
cve-2022-32891
safari 16
tvos 16
watchos 9
ios 16
ui handling
ui spoofing
website security
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.002
Percentile
51.6%
The issue was addressed with improved UI handling. This issue is fixed in Safari 16, tvOS 16, watchOS 9, iOS 16. Visiting a website that frames malicious content may lead to UI spoofing.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | webkit2gtk | < 2.36.6-1 | webkit2gtk_2.36.6-1_all.deb |
| Debian | 11 | all | webkit2gtk | < 2.36.6-1~deb11u1 | webkit2gtk_2.36.6-1~deb11u1_all.deb |
| Debian | 999 | all | webkit2gtk | < 2.36.6-1 | webkit2gtk_2.36.6-1_all.deb |
| Debian | 13 | all | webkit2gtk | < 2.36.6-1 | webkit2gtk_2.36.6-1_all.deb |
| Debian | 12 | all | wpewebkit | < 2.36.6-1 | wpewebkit_2.36.6-1_all.deb |
| Debian | 11 | all | wpewebkit | < 2.36.6-1~deb11u1 | wpewebkit_2.36.6-1~deb11u1_all.deb |
| Debian | 999 | all | wpewebkit | < 2.36.6-1 | wpewebkit_2.36.6-1_all.deb |
| Debian | 13 | all | wpewebkit | < 2.36.6-1 | wpewebkit_2.36.6-1_all.deb |
Related
ubuntucve
ubuntucve
CVE-2022-32891
2023-02-27 00:00:00
nvd
nvd
CVE-2022-32891
2023-02-27 20:15:12
prion
prion
Design/Logic Flaw
2023-02-27 20:15:00
cvelist
cvelist
CVE-2022-32891
2023-02-27 00:00:00
cve
cve
CVE-2022-32891
2023-02-27 20:15:12
redhatcve
redhatcve
CVE-2022-32891
2022-09-21 10:49:14
fedora
fedora
[SECURITY] Fedora 36 Update: webkit2gtk3-2.38.0-2.fc36
2022-09-25 01:34:19
[SECURITY] Fedora 35 Update: webkit2gtk3-2.38.0-2.fc35
2022-09-27 01:34:09
openvas
openvas
Fedora: Security Advisory for webkit2gtk3 (FEDORA-2022-ece798a8d4)
2022-09-28 00:00:00
Fedora: Security Advisory for webkit2gtk3 (FEDORA-2022-a77b646471)
2022-09-26 00:00:00
Mageia: Security Advisory (MGASA-2022-0346)
2022-09-26 00:00:00
osv
osv
wpewebkit - security update
2022-08-16 00:00:00
webkit2gtk - security update
2022-08-16 00:00:00
webkit2gtk - security update
2022-08-17 00:00:00
mageia
mageia
Updated webkit2 packages fix security vulnerability
2022-09-26 09:22:36
apple
apple
About the security content of Safari 16
2022-09-12 00:00:00
About the security content of tvOS 16
2022-09-12 00:00:00
About the security content of watchOS 9
2022-09-12 00:00:00
redhat
redhat
nessus
nessus
RHEL 8 : webkit2gtk3 (RHSA-2022:7704)
2022-11-09 00:00:00
RHEL 9 : webkit2gtk3 (RHSA-2022:8054)
2022-11-16 00:00:00
GLSA-202305-32 : WebKitGTK+: Multiple Vulnerabilities
2023-05-30 00:00:00
gentoo
gentoo
WebKitGTK+: Multiple Vulnerabilities
2023-05-30 00:00:00
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.002
Percentile
51.6%
Related for DEBIANCVE:CVE-2022-32891