CVE-2022-22654: Medium severity apple ios, ipados, and watchos vulnerability
Published Mar 14, 2022
·Updated
A user interface issue was addressed. This issue is fixed in watchOS 8.5, Safari 15.4. Visiting a malicious website may lead to address bar spoofing.
Other sources
Safari. A user interface issue was addressed.
Credit
Abdullah Md Shaleh(take0ver)
Affected Software
4 affected componentsFixes available
Apple WatchOS<8.5
8.5
Apple Safari<15.4
15.4
Apple Safari<15.4
Apple WatchOS<8.5
Event History
Mar 18, 2022
CVE Published
via MITRE·06:00 PM
Data Sourced
via MITRE·06:00 PM
DescriptionWeakness
Peer vulnerabilities
Found alongside the following vulnerabilities.
- CVE-2022-22633
- CVE-2022-22666
- CVE-2022-22611
- CVE-2022-22612
- CVE-2022-22596
- CVE-2022-22640
- CVE-2022-22613
- CVE-2022-22614
- CVE-2022-22615
- CVE-2022-22632
- CVE-2022-22638
- CVE-2021-30946
- CVE-2021-36976
- CVE-2022-21658
- CVE-2022-22670
- CVE-2022-22618
- CVE-2022-22609
- CVE-2022-22654
- CVE-2022-22600
- CVE-2022-22599
- CVE-2022-22621
- CVE-2022-22662
- CVE-2022-22610
- CVE-2022-22624
- CVE-2022-22628
- CVE-2022-22629
- CVE-2022-22637
Frequently Asked Questions
1
What is CVE-2022-22654?
CVE-2022-22654 is a vulnerability in Safari and watchOS that allows address bar spoofing when visiting a malicious website.
2
What is the severity of CVE-2022-22654?
The severity of CVE-2022-22654 is medium, with a severity value of 4.3.
3
How can I fix CVE-2022-22654?
To fix CVE-2022-22654, update to watchOS 8.5 or Safari 15.4 or later versions.
4
Where can I find more information about CVE-2022-22654?
You can find more information about CVE-2022-22654 in the Apple support articles: [link 1](https://support.apple.com/en-us/HT213187) and [link 2](https://support.apple.com/en-us/HT213193).