CVE Vulnerabilities

CVE-2022-42849

Published: Dec 15, 2022 | Modified: Apr 21, 2025
CVSS 3.x
7.8
HIGH
Source:
NVD
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu
root.io minimus.io echohq.com

An access issue existed with privileged API calls. This issue was addressed with additional restrictions. This issue is fixed in iOS 16.2 and iPadOS 16.2, tvOS 16.2, watchOS 9.2. A user may be able to elevate privileges.

Affected Software

Name Vendor Start Version End Version
Ipados Apple * 16.2 (excluding)
Iphone_os Apple * 16.2 (excluding)
Tvos Apple * 16.2 (excluding)
Watchos Apple * 9.2 (excluding)

References