CVE-2022-48503

high

Description

The issue was addressed with improved bounds checks. This issue is fixed in tvOS 15.6, watchOS 8.7, iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5, Safari 15.6. Processing web content may lead to arbitrary code execution.

References

Exploits
More

https://www.securityweek.com/cisa-warns-of-exploited-apple-kentico-microsoft-vulnerabilities/

https://www.helpnetsecurity.com/2025/10/21/cisa-warns-of-windows-smb-flaw-under-active-exploitation-cve-2025-33073/

https://securityaffairs.com/183659/uncategorized/u-s-cisa-adds-oracle-windows-kentico-apple-flaws-to-its-known-exploited-vulnerabilities-catalog.html

https://www.cisa.gov/news-events/alerts/2025/10/20/cisa-adds-five-known-exploited-vulnerabilities-catalog

https://thehackernews.com/2025/10/five-new-exploited-bugs-land-in-cisas.html

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022-48503

https://support.apple.com/en-us/HT213346

https://support.apple.com/en-us/HT213345

https://support.apple.com/en-us/HT213342

https://support.apple.com/en-us/HT213341

https://support.apple.com/en-us/HT213340

Details

Source: Mitre, NVD

Published: 2023-08-14

Updated: 2025-10-23

Known Exploited Vulnerability (KEV)

Risk Information

CVSS v2

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Severity: Critical

CVSS v3

Base Score: 8.8

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.00324

Detections

Analytics