An integer overflow issue was addressed with improved input validation. This issue is fixed in tvOS 15.5, iTunes 12.12.4 for Windows, iOS 15.5 and iPadOS 15.5, watchOS 8.6, macOS Monterey 12.4. A remote attacker may be able to cause unexpected application termination or arbitrary code execution.
References
Link | Resource |
---|---|
https://support.apple.com/en-us/HT213253 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT213254 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT213257 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT213258 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT213259 | Release Notes Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
07 Jun 2022, 21:15
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* cpe:2.3:a:apple:itunes:*:*:*:*:*:*:*:* cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* |
|
References | (MISC) https://support.apple.com/en-us/HT213257 - Release Notes, Vendor Advisory | |
References | (MISC) https://support.apple.com/en-us/HT213259 - Release Notes, Vendor Advisory | |
References | (MISC) https://support.apple.com/en-us/HT213253 - Release Notes, Vendor Advisory | |
References | (MISC) https://support.apple.com/en-us/HT213254 - Release Notes, Vendor Advisory | |
References | (MISC) https://support.apple.com/en-us/HT213258 - Release Notes, Vendor Advisory | |
First Time |
Apple iphone Os
Apple macos Apple tvos Apple watchos Apple ipados Apple Apple itunes |
|
CVSS |
v2 : v3 : |
v2 : 7.5
v3 : 9.8 |
CWE | CWE-190 |
26 May 2022, 19:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-05-26 19:15
Updated : 2023-12-10 14:22
NVD link : CVE-2022-26711
Mitre link : CVE-2022-26711
CVE.ORG link : CVE-2022-26711
JSON object : View
Products Affected
apple
- macos
- iphone_os
- tvos
- ipados
- watchos
- itunes
CWE
CWE-190
Integer Overflow or Wraparound