An integer overflow was addressed with improved input validation. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5. An app may be able to execute arbitrary code with kernel privileges.
References
Link | Resource |
---|---|
https://support.apple.com/en-us/HT213345 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT213346 | Release Notes Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
20 Dec 2022, 02:27
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* |
|
References | (MISC) https://support.apple.com/en-us/HT213345 - Release Notes, Vendor Advisory | |
References | (MISC) https://support.apple.com/en-us/HT213346 - Release Notes, Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
First Time |
Apple iphone Os
Apple ipados Apple macos Apple |
|
CWE | CWE-190 |
15 Dec 2022, 19:56
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-12-15 19:15
Updated : 2023-12-10 14:48
NVD link : CVE-2022-42805
Mitre link : CVE-2022-42805
CVE.ORG link : CVE-2022-42805
JSON object : View
Products Affected
apple
- macos
- iphone_os
- ipados
CWE
CWE-190
Integer Overflow or Wraparound