Vulnerability Details : CVE-2022-32816
The issue was addressed with improved UI handling. This issue is fixed in watchOS 8.7, tvOS 15.6, iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5. Visiting a website that frames malicious content may lead to UI spoofing.
Exploit prediction scoring system (EPSS) score for CVE-2022-32816
Probability of exploitation activity in the next 30 days: 0.14%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 49 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2022-32816
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Source |
|---|---|---|---|---|---|
|
6.5
|
MEDIUM | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N |
2.8
|
3.6
|
nvd@nist.gov |
References for CVE-2022-32816
-
https://support.apple.com/en-us/HT213345
About the security content of macOS Monterey 12.5 - Apple SupportVendor Advisory
-
https://support.apple.com/en-us/HT213346
About the security content of iOS 15.6 and iPadOS 15.6 - Apple SupportVendor Advisory
-
https://support.apple.com/en-us/HT213340
About the security content of watchOS 8.7 - Apple SupportVendor Advisory
-
https://support.apple.com/en-us/HT213342
About the security content of tvOS 15.6 - Apple SupportVendor Advisory
Products affected by CVE-2022-32816
- cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
- cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*
- cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*
- cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
- cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*