CVE-2022-26768

A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.4, watchOS 8.6, tvOS 15.5, macOS Big Sur 11.6.6. An application may be able to execute arbitrary code with kernel privileges.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*

History

22 Jul 2022, 06:15

Type Values Removed Values Added
References
  • (FULLDISC) http://seclists.org/fulldisclosure/2022/Jul/12 -
  • (CONFIRM) https://support.apple.com/kb/HT213346 -

08 Jun 2022, 12:48

Type Values Removed Values Added
First Time Apple watchos
Apple
Apple tvos
Apple macos
CPE cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*
CWE CWE-787
References (MISC) https://support.apple.com/en-us/HT213253 - (MISC) https://support.apple.com/en-us/HT213253 - Vendor Advisory
References (MISC) https://support.apple.com/en-us/HT213256 - (MISC) https://support.apple.com/en-us/HT213256 - Vendor Advisory
References (MISC) https://support.apple.com/en-us/HT213257 - (MISC) https://support.apple.com/en-us/HT213257 - Vendor Advisory
References (MISC) https://support.apple.com/en-us/HT213254 - (MISC) https://support.apple.com/en-us/HT213254 - Vendor Advisory
CVSS v2 : unknown
v3 : unknown
v2 : 9.3
v3 : 7.8

26 May 2022, 20:15

Type Values Removed Values Added
New CVE

Information

Published : 2022-05-26 20:15

Updated : 2022-07-22 06:15


NVD link : CVE-2022-26768

Mitre link : CVE-2022-26768


JSON object : View

Products Affected

apple

  • macos
  • watchos
  • tvos
CWE
CWE-787

Out-of-bounds Write