CVE-2022-32816

MEDIUM

Apple Ipados < 15.6 - Denial of Service

Title source: rule

Description

The issue was addressed with improved UI handling. This issue is fixed in watchOS 8.7, tvOS 15.6, iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5. Visiting a website that frames malicious content may lead to UI spoofing.

References (4)

[Vendor Advisory] https://support.apple.com/en-us/HT213345

[Vendor Advisory] https://support.apple.com/en-us/HT213340

[Vendor Advisory] https://support.apple.com/en-us/HT213342

[Vendor Advisory] https://support.apple.com/en-us/HT213346

Scores

CVSS v3 6.5

EPSS 0.0009

EPSS Percentile 25.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-451

Status published

Products (5)

apple/ipados < 15.6

apple/iphone_os < 15.6

apple/macos 12.0 - 12.5

apple/tvos < 15.6

apple/watchos < 8.7

Published Sep 23, 2022

Tracked Since Feb 18, 2026