An integer overflow was addressed with improved input validation. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5. An app may be able to execute arbitrary code with kernel privileges.
References
| Link | Resource |
|---|---|
| https://support.apple.com/en-us/HT213345 | Release Notes Vendor Advisory |
| https://support.apple.com/en-us/HT213346 | Release Notes Vendor Advisory |
| https://support.apple.com/en-us/HT213345 | Release Notes Vendor Advisory |
| https://support.apple.com/en-us/HT213346 | Release Notes Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 07:25
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://support.apple.com/en-us/HT213345 - Release Notes, Vendor Advisory | |
| References | () https://support.apple.com/en-us/HT213346 - Release Notes, Vendor Advisory |
20 Dec 2022, 02:27
| Type | Values Removed | Values Added |
|---|---|---|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
| CWE | CWE-190 | |
| CPE | cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* |
|
| References | (MISC) https://support.apple.com/en-us/HT213346 - Release Notes, Vendor Advisory | |
| References | (MISC) https://support.apple.com/en-us/HT213345 - Release Notes, Vendor Advisory |
15 Dec 2022, 19:56
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2022-12-15 19:15
Updated : 2024-11-21 07:25
NVD link : CVE-2022-42805
Mitre link : CVE-2022-42805
CVE.ORG link : CVE-2022-42805
JSON object : View
Products Affected
apple
- ipados
- macos
- iphone_os
CWE
CWE-190
Integer Overflow or Wraparound