An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 15.7.1 and iPadOS 15.7.1, iOS 16.1 and iPadOS 16. An application may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited..
References
Link | Resource |
---|---|
https://support.apple.com/en-us/HT213489 | Vendor Advisory |
https://support.apple.com/en-us/HT213490 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
03 Nov 2022, 13:33
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
CPE | cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* cpe:2.3:o:apple:iphone_os:16.0:*:*:*:*:*:*:* |
|
References | (MISC) https://support.apple.com/en-us/HT213490 - Vendor Advisory | |
References | (MISC) https://support.apple.com/en-us/HT213489 - Vendor Advisory | |
CWE | CWE-787 |
01 Nov 2022, 20:17
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-11-01 20:15
Updated : 2024-02-04 22:51
NVD link : CVE-2022-42827
Mitre link : CVE-2022-42827
CVE.ORG link : CVE-2022-42827
JSON object : View
Products Affected
apple
- iphone_os
- ipados
- macos
- watchos
- tvos
CWE
CWE-787
Out-of-bounds Write