← ExploitWatch
HomeExploited Vulnerabilities

CVE-2022-22620 — Actively Exploited: iOS, iPadOS, and macOS (Apple)

Apple iOS, iPadOS, and macOS WebKit contain a use-after-free vulnerability that leads to code execution when processing maliciously crafted web content. This vulnerability could impact HTML parsers that use WebKit, including but not limited to Apple Safari and non-Apple products which rely on WebKit for HTML processing

CVE IDCVE-2022-22620
VendorApple
ProductiOS, iPadOS, and macOS
Vulnerability nameApple iOS, iPadOS, and macOS Webkit Use-After-Free Vulnerability
Date added2022-02-11
Remediation due2022-02-25
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionApple iOS, iPadOS, and macOS WebKit contain a use-after-free vulnerability that leads to code execution when processing maliciously crafted web content. This vulnerability could impact HTML parsers that use WebKit, including but not limited to Apple Safari and non-Apple products which rely on WebKit for HTML processing.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →