Question 1

What is CVE-2022-42837 — CVE-2022-42837?

Accepted Answer

An issue existed in the parsing of URLs. This issue was addressed with improved input validation. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, watchOS 9.2. A remote user may be able to cause unexpected app termination or arbitrary code execution.

Question 2

What is the authoritative source for CVE-2022-42837?

Accepted Answer

CVE-2022-42837 (CVE-2022-42837) is catalogued in NVD + CISA KEV + FIRST EPSS and curated for EU compliance use cases by SQUR.

CVSS	9.8 ()
Vector	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS	2.06% probability of exploitation · percentile 78.9% · 2026-06-19T12:03:05Z
Last modified	2026-06-17

CVE-2022-42837CVE-2022-42837

Description

Scoring