Lucene search
Manfred Paul (@_manfp)ZDI-22-1123HistoryAug 18, 2022 - 12:00 a.m.
(Pwn2Own) Apple Safari Out-Of-Bounds Write Remote Code Execution Vulnerability
2022-08-1800:00:00
Manfred Paul (@_manfp)
www.zerodayinitiative.com
16
0.003 Low
EPSS
Percentile
70.5%
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple Safari. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the B3 JIT compiler. By performing actions in JavaScript, an attacker can trigger a write past the end of an allocated data structure. An attacker can leverage this vulnerability to execute code in the context of the current process.
References
Related
debiancve
debiancve
CVE-2022-32792
2022-09-23 19:15:12
nvd
nvd
CVE-2022-32792
2022-09-23 19:15:12
cve
cve
CVE-2022-32792
2022-09-23 19:15:12
prion
prion
Input validation
2022-09-23 19:15:00
ubuntucve
ubuntucve
CVE-2022-32792
2022-07-28 00:00:00
veracode
veracode
Denial Of Service (DoS)
2022-07-31 10:13:02
cvelist
cvelist
CVE-2022-32792
2022-09-23 18:59:02
cnvd
cnvd
Apple iOS and iPadOS WebKit Buffer Overflow Vulnerability
2022-07-22 00:00:00
alpinelinux
alpinelinux
CVE-2022-32792
2022-09-23 19:15:12
redhatcve
redhatcve
CVE-2022-32792
2023-09-14 15:51:10
nessus
nessus
Debian DLA-3073-1 : webkit2gtk - LTS security update
2022-08-18 00:00:00
Debian DSA-5211-1 : wpewebkit - security update
2022-08-17 00:00:00
SUSE SLED15 / SLES15 Security Update : webkit2gtk3 (SUSE-SU-2022:2826-1)
2022-08-17 00:00:00
archlinux
archlinux
[ASA-202207-3] webkit2gtk: multiple issues
2022-07-29 00:00:00
[ASA-202207-2] wpewebkit: multiple issues
2022-07-29 00:00:00
[ASA-202207-1] webkit2gtk-5.0: multiple issues
2022-07-29 00:00:00
suse
suse
Security update for webkit2gtk3 (important)
2022-08-16 00:00:00
Security update for webkit2gtk3 (important)
2022-08-16 00:00:00
debian
debian
[SECURITY] [DSA 5210-1] webkit2gtk security update
2022-08-16 21:53:19
[SECURITY] [DSA 5211-1] wpewebkit security update
2022-08-16 21:54:44
[SECURITY] [DLA 3073-1] webkit2gtk security update
2022-08-17 10:39:21
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2022:2826-1)
2022-08-17 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:2821-1)
2022-08-17 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:2820-1)
2022-08-17 00:00:00
fedora
fedora
[SECURITY] Fedora 36 Update: webkit2gtk3-2.36.5-1.fc36
2022-07-31 01:39:53
[SECURITY] Fedora 35 Update: webkit2gtk3-2.36.6-1.fc35
2022-08-16 01:42:44
osv
osv
webkit2gtk - security update
2022-08-17 00:00:00
webkit2gtk - security update
2022-08-16 00:00:00
webkit2gtk vulnerabilities
2022-08-15 12:23:31
ubuntu
ubuntu
WebKitGTK vulnerabilities
2022-08-15 00:00:00
mageia
mageia
Updated webkit2 packages fix security vulnerability
2022-08-20 13:04:13
apple
apple
About the security content of Safari 15.6
2022-07-20 00:00:00
About the security content of watchOS 8.7
2022-07-20 00:00:00
About the security content of tvOS 15.6
2022-07-20 00:00:00
redhat
redhat
thn
thn
gentoo
gentoo
WebKitGTK+: Multiple Vulnerabilities
2022-08-31 00:00:00
amazon
amazon
Important: webkitgtk4
2023-06-07 23:52:00