ByteOS Network

Vulnerability Details :

CVE-2022-22637

Assigner-apple

Assigner Org ID-286789f9-fbc2-4510-9f9a-43facdede74c

Published At-23 Sep, 2022 | 18:58

Updated At-22 May, 2025 | 15:51

A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.3, Safari 15.4, watchOS 8.5, iOS 15.4 and iPadOS 15.4, tvOS 15.4. A malicious website may cause unexpected cross-origin behavior.

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

▼Common Vulnerabilities and Exposures (CVE)

cve.org

Assigner:apple

Assigner Org ID:286789f9-fbc2-4510-9f9a-43facdede74c

Published At:23 Sep, 2022 | 18:58

Updated At:22 May, 2025 | 15:51

▼CVE Numbering Authority (CNA)

From unspecified before 8.5 (custom)

Problem Types

Type	CWE ID	Description
text	N/A	A malicious website may cause unexpected cross-origin behavior

Type: text

CWE ID: N/A

Description: A malicious website may cause unexpected cross-origin behavior

References

Hyperlink	Resource
https://support.apple.com/en-us/HT213182	x_refsource_MISC
https://support.apple.com/en-us/HT213193	x_refsource_MISC
https://support.apple.com/en-us/HT213183	x_refsource_MISC
https://support.apple.com/en-us/HT213186	x_refsource_MISC
https://support.apple.com/en-us/HT213187	x_refsource_MISC

Hyperlink: https://support.apple.com/en-us/HT213182

Resource:

x_refsource_MISC

Hyperlink: https://support.apple.com/en-us/HT213193

Resource:

x_refsource_MISC

Hyperlink: https://support.apple.com/en-us/HT213183

Resource:

x_refsource_MISC

Hyperlink: https://support.apple.com/en-us/HT213186

Resource:

x_refsource_MISC

Hyperlink: https://support.apple.com/en-us/HT213187

Resource:

x_refsource_MISC

▼Authorized Data Publishers (ADP)

1. CVE Program Container

References

Hyperlink	Resource
https://support.apple.com/en-us/HT213182	x_refsource_MISC x_transferred
https://support.apple.com/en-us/HT213193	x_refsource_MISC x_transferred
https://support.apple.com/en-us/HT213183	x_refsource_MISC x_transferred
https://support.apple.com/en-us/HT213186	x_refsource_MISC x_transferred
https://support.apple.com/en-us/HT213187	x_refsource_MISC x_transferred

Hyperlink: https://support.apple.com/en-us/HT213182

Resource:

x_refsource_MISC

x_transferred

Hyperlink: https://support.apple.com/en-us/HT213193

Resource:

x_refsource_MISC

x_transferred

Hyperlink: https://support.apple.com/en-us/HT213183

Resource:

x_refsource_MISC

x_transferred

Hyperlink: https://support.apple.com/en-us/HT213186

Resource:

x_refsource_MISC

x_transferred

Hyperlink: https://support.apple.com/en-us/HT213187

Resource:

x_refsource_MISC

x_transferred

2. CISA ADP Vulnrichment

Problem Types

Type	CWE ID	Description
CWE	CWE-346	CWE-346 Origin Validation Error

Type: CWE

CWE ID: CWE-346

Description: CWE-346 Origin Validation Error

Metrics

Version	Base score	Base severity	Vector
3.1	8.8	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Version: 3.1

Base score: 8.8

Base severity: HIGH

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Metrics Other Info

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:product-security@apple.com

Published At:23 Sep, 2022 | 19:15

Updated At:22 May, 2025 | 16:15

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	8.8	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Secondary	3.1	8.8	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Type: Primary

Version: 3.1

Base score: 8.8

Base severity: HIGH

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Type: Secondary

Version: 3.1

Base score: 8.8

Base severity: HIGH

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CPE Matches

Apple Inc.

>>safari>>Versions before 15.4(exclusive)

cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*

Apple Inc.

>>ipad_os>>Versions before 15.4(exclusive)

cpe:2.3:o:apple:ipad_os:*:*:*:*:*:*:*:*

Apple Inc.

>>iphone_os>>Versions before 15.4(exclusive)

cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*

Apple Inc.

>>macos>>Versions from 12.0(inclusive) to 12.3(exclusive)

cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*

Apple Inc.

>>tvos>>Versions before 15.4(exclusive)

cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*

Apple Inc.

>>watchos>>Versions before 8.5(exclusive)

cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
NVD-CWE-noinfo	Primary	nvd@nist.gov
CWE-346	Secondary	134c704f-9b21-4f2e-91b3-4a467353bcc0

CWE ID: NVD-CWE-noinfo

Type: Primary

Source: nvd@nist.gov

CWE ID: CWE-346

Type: Secondary

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

References

Hyperlink	Source	Resource
https://support.apple.com/en-us/HT213182	product-security@apple.com	Vendor Advisory
https://support.apple.com/en-us/HT213183	product-security@apple.com	Vendor Advisory
https://support.apple.com/en-us/HT213186	product-security@apple.com	Vendor Advisory
https://support.apple.com/en-us/HT213187	product-security@apple.com	Vendor Advisory
https://support.apple.com/en-us/HT213193	product-security@apple.com	Vendor Advisory
https://support.apple.com/en-us/HT213182	af854a3a-2127-422b-91ae-364da2661108	Vendor Advisory
https://support.apple.com/en-us/HT213183	af854a3a-2127-422b-91ae-364da2661108	Vendor Advisory
https://support.apple.com/en-us/HT213186	af854a3a-2127-422b-91ae-364da2661108	Vendor Advisory
https://support.apple.com/en-us/HT213187	af854a3a-2127-422b-91ae-364da2661108	Vendor Advisory
https://support.apple.com/en-us/HT213193	af854a3a-2127-422b-91ae-364da2661108	Vendor Advisory

Hyperlink: https://support.apple.com/en-us/HT213182

Source: product-security@apple.com

Resource:

Vendor Advisory

Hyperlink: https://support.apple.com/en-us/HT213183

Source: product-security@apple.com

Resource:

Vendor Advisory

Hyperlink: https://support.apple.com/en-us/HT213186

Source: product-security@apple.com

Resource:

Vendor Advisory

Hyperlink: https://support.apple.com/en-us/HT213187

Source: product-security@apple.com

Resource:

Vendor Advisory

Hyperlink: https://support.apple.com/en-us/HT213193

Source: product-security@apple.com

Resource:

Vendor Advisory

Hyperlink: https://support.apple.com/en-us/HT213182