CVE-2022-42851

medium

Description

The issue was addressed with improved memory handling. This issue is fixed in iOS 16.2 and iPadOS 16.2, tvOS 16.2. Parsing a maliciously crafted TIFF file may lead to disclosure of user information.

References

https://support.apple.com/en-us/HT213535

https://support.apple.com/en-us/HT213530

http://seclists.org/fulldisclosure/2022/Dec/26

http://seclists.org/fulldisclosure/2022/Dec/20

Details

Source: Mitre, NVD

Published: 2022-12-15

Updated: 2023-01-09

Risk Information

CVSS v2

Base Score: 4.9

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N