CVE-2022-26711

An integer overflow issue was addressed with improved input validation. This issue is fixed in tvOS 15.5, iTunes 12.12.4 for Windows, iOS 15.5 and iPadOS 15.5, watchOS 8.6, macOS Monterey 12.4. A remote attacker may be able to cause unexpected application termination or arbitrary code execution.
References
Link Resource
https://support.apple.com/en-us/HT213257 Release Notes Vendor Advisory
https://support.apple.com/en-us/HT213254 Release Notes Vendor Advisory
https://support.apple.com/en-us/HT213253 Release Notes Vendor Advisory
https://support.apple.com/en-us/HT213258 Release Notes Vendor Advisory
https://support.apple.com/en-us/HT213259 Release Notes Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
cpe:2.3:a:apple:itunes:*:*:*:*:*:*:*:*

History

07 Jun 2022, 21:15

Type Values Removed Values Added
CPE cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
cpe:2.3:a:apple:itunes:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
References (MISC) https://support.apple.com/en-us/HT213257 - (MISC) https://support.apple.com/en-us/HT213257 - Release Notes, Vendor Advisory
References (MISC) https://support.apple.com/en-us/HT213259 - (MISC) https://support.apple.com/en-us/HT213259 - Release Notes, Vendor Advisory
References (MISC) https://support.apple.com/en-us/HT213253 - (MISC) https://support.apple.com/en-us/HT213253 - Release Notes, Vendor Advisory
References (MISC) https://support.apple.com/en-us/HT213254 - (MISC) https://support.apple.com/en-us/HT213254 - Release Notes, Vendor Advisory
References (MISC) https://support.apple.com/en-us/HT213258 - (MISC) https://support.apple.com/en-us/HT213258 - Release Notes, Vendor Advisory
First Time Apple iphone Os
Apple macos
Apple tvos
Apple watchos
Apple ipados
Apple
Apple itunes
CVSS v2 : unknown
v3 : unknown
v2 : 7.5
v3 : 9.8
CWE CWE-190

26 May 2022, 19:15

Type Values Removed Values Added
New CVE

Information

Published : 2022-05-26 19:15

Updated : 2022-06-07 21:15


NVD link : CVE-2022-26711

Mitre link : CVE-2022-26711


JSON object : View

Products Affected

apple

  • tvos
  • watchos
  • iphone_os
  • macos
  • itunes
  • ipados
CWE
CWE-190

Integer Overflow or Wraparound