vulnerability
Arch Linux: Improper Restriction of Rendered UI Layers or Frames (CVE-2022-32891)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:N/AC:M/Au:N/C:P/I:P/A:N) | Feb 27, 2023 | Jul 11, 2025 | Nov 27, 2025 |
Severity
6
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:N)
Published
Feb 27, 2023
Added
Jul 11, 2025
Modified
Nov 27, 2025
Description
The issue was addressed with improved UI handling. This issue is fixed in Safari 16, tvOS 16, watchOS 9, iOS 16. Visiting a website that frames malicious content may lead to UI spoofing.
Solution
arch-linux-upgrade-latest
References
- CVE-2022-32891
- https://attackerkb.com/topics/CVE-2022-32891
- URL-https://security.gentoo.org/glsa/202305-32
- URL-https://support.apple.com/en-us/HT213442
- URL-https://support.apple.com/en-us/HT213446
- URL-https://support.apple.com/en-us/HT213486
- URL-https://support.apple.com/en-us/HT213487
- URL-https://webkitgtk.org/security/WSA-2022-0009.html
- URL-https://wpewebkit.org/security/WSA-2022-0008.html
- CWE-1021
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.