CVE-2022-22629

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.3, Safari 15.4, watchOS 8.5, iTunes 12.12.3 for Windows, iOS 15.4 and iPadOS 15.4, tvOS 15.4. Processing maliciously crafted web content may lead to arbitrary code execution.
References
Link Resource
https://support.apple.com/en-us/HT213188 Release Notes Vendor Advisory
https://support.apple.com/en-us/HT213186 Release Notes Vendor Advisory
https://support.apple.com/en-us/HT213187 Release Notes Vendor Advisory
https://support.apple.com/en-us/HT213182 Release Notes Vendor Advisory
https://support.apple.com/en-us/HT213193 Release Notes Vendor Advisory
https://support.apple.com/en-us/HT213183 Release Notes Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*
cpe:2.3:a:apple:itunes:*:*:*:*:*:windows:*:*
cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*

History

27 Sep 2022, 04:48

Type Values Removed Values Added
References (MISC) https://support.apple.com/en-us/HT213186 - (MISC) https://support.apple.com/en-us/HT213186 - Release Notes, Vendor Advisory
References (MISC) https://support.apple.com/en-us/HT213188 - (MISC) https://support.apple.com/en-us/HT213188 - Release Notes, Vendor Advisory
References (MISC) https://support.apple.com/en-us/HT213183 - (MISC) https://support.apple.com/en-us/HT213183 - Release Notes, Vendor Advisory
References (MISC) https://support.apple.com/en-us/HT213187 - (MISC) https://support.apple.com/en-us/HT213187 - Release Notes, Vendor Advisory
References (MISC) https://support.apple.com/en-us/HT213193 - (MISC) https://support.apple.com/en-us/HT213193 - Release Notes, Vendor Advisory
References (MISC) https://support.apple.com/en-us/HT213182 - (MISC) https://support.apple.com/en-us/HT213182 - Release Notes, Vendor Advisory
CPE cpe:2.3:a:apple:itunes:*:*:*:*:*:windows:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
CWE CWE-787
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 8.8
First Time Apple macos
Apple itunes
Apple watchos
Apple ipados
Apple tvos
Apple
Apple iphone Os
Apple safari

23 Sep 2022, 20:54

Type Values Removed Values Added
New CVE

Information

Published : 2022-09-23 20:15

Updated : 2022-09-27 04:48


NVD link : CVE-2022-22629

Mitre link : CVE-2022-22629


JSON object : View

Products Affected

apple

  • ipados
  • tvos
  • macos
  • itunes
  • safari
  • iphone_os
  • watchos
CWE
CWE-787

Out-of-bounds Write