CVE-2022-26702

A use after free issue was addressed with improved memory management. This issue is fixed in watchOS 8.6, tvOS 15.5, iOS 15.5 and iPadOS 15.5. An application may be able to execute arbitrary code with kernel privileges.
References
Link Resource
https://support.apple.com/en-us/HT213254 Release Notes Vendor Advisory
https://support.apple.com/en-us/HT213253 Release Notes Vendor Advisory
https://support.apple.com/en-us/HT213258 Release Notes Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*

History

08 Jun 2022, 18:48

Type Values Removed Values Added
First Time Apple iphone Os
Apple tvos
Apple watchos
Apple ipados
Apple
References (MISC) https://support.apple.com/en-us/HT213253 - (MISC) https://support.apple.com/en-us/HT213253 - Release Notes, Vendor Advisory
References (MISC) https://support.apple.com/en-us/HT213254 - (MISC) https://support.apple.com/en-us/HT213254 - Release Notes, Vendor Advisory
References (MISC) https://support.apple.com/en-us/HT213258 - (MISC) https://support.apple.com/en-us/HT213258 - Release Notes, Vendor Advisory
CWE CWE-416
CPE cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown
v2 : 9.3
v3 : 7.8

26 May 2022, 19:15

Type Values Removed Values Added
New CVE

Information

Published : 2022-05-26 19:15

Updated : 2022-06-08 18:48


NVD link : CVE-2022-26702

Mitre link : CVE-2022-26702


JSON object : View

Products Affected

apple

  • iphone_os
  • watchos
  • ipados
  • tvos
CWE
CWE-416

Use After Free