CVE-2022-26711
An integer overflow issue was addressed with improved input validation. This issue is fixed in tvOS 15.5, iTunes 12.12.4 for Windows, iOS 15.5 and iPadOS 15.5, watchOS 8.6, macOS Monterey 12.4. A remote attacker may be able to cause unexpected application termination or arbitrary code execution.
Published
2022-05-26T19:15:08.277
Last Modified
2024-11-21T06:54:21.880
Status
Modified
Source
[email protected]
Severity
CVSSv3.1: 9.8 (CRITICAL)
CVSSv2 Vector
AV:N/AC:L/Au:N/C:P/I:P/A:P
- Access Vector: NETWORK
- Access Complexity: LOW
- Authentication: NONE
- Confidentiality Impact: PARTIAL
- Integrity Impact: PARTIAL
- Availability Impact: PARTIAL
Exploitability Score
10.0
Impact Score
6.4
Weaknesses
Affected Vendors & Products
References
-
https://support.apple.com/en-us/HT213253
Release Notes, Vendor Advisory
([email protected])
-
https://support.apple.com/en-us/HT213254
Release Notes, Vendor Advisory
([email protected])
-
https://support.apple.com/en-us/HT213257
Release Notes, Vendor Advisory
([email protected])
-
https://support.apple.com/en-us/HT213258
Release Notes, Vendor Advisory
([email protected])
-
https://support.apple.com/en-us/HT213259
Release Notes, Vendor Advisory
([email protected])
-
https://support.apple.com/en-us/HT213253
Release Notes, Vendor Advisory
(af854a3a-2127-422b-91ae-364da2661108)
-
https://support.apple.com/en-us/HT213254
Release Notes, Vendor Advisory
(af854a3a-2127-422b-91ae-364da2661108)
-
https://support.apple.com/en-us/HT213257
Release Notes, Vendor Advisory
(af854a3a-2127-422b-91ae-364da2661108)
-
https://support.apple.com/en-us/HT213258
Release Notes, Vendor Advisory
(af854a3a-2127-422b-91ae-364da2661108)
-
https://support.apple.com/en-us/HT213259
Release Notes, Vendor Advisory
(af854a3a-2127-422b-91ae-364da2661108)