Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-46693

An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in tvOS 16.2, iCloud for Windows 14.1, macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing a maliciously crafted file may lead to arbitrary code execution.

Published

2022-12-15T19:15:26.287

Last Modified

2025-04-21T15:15:56.680

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.8 (HIGH)

Weaknesses

Type: Primary
CWE-787
Type: Secondary
CWE-787

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	apple	icloud	< 14.1	Yes
Operating System	apple	ipados	< 16.2	Yes
Operating System	apple	iphone_os	< 16.2	Yes
Operating System	apple	macos	< 13.1	Yes
Operating System	apple	tvos	< 16.2	Yes
Operating System	apple	watchos	< 9.2	Yes

References

http://seclists.org/fulldisclosure/2022/Dec/20 Mailing List, Third Party Advisory ([email protected])
http://seclists.org/fulldisclosure/2022/Dec/23 Mailing List, Third Party Advisory ([email protected])
http://seclists.org/fulldisclosure/2022/Dec/26 Mailing List, Third Party Advisory ([email protected])
http://seclists.org/fulldisclosure/2022/Dec/27 ([email protected])
https://support.apple.com/en-us/HT213530 Release Notes, Vendor Advisory ([email protected])
https://support.apple.com/en-us/HT213532 Release Notes, Vendor Advisory ([email protected])
https://support.apple.com/en-us/HT213535 Release Notes, Vendor Advisory ([email protected])
https://support.apple.com/en-us/HT213536 Release Notes, Vendor Advisory ([email protected])
https://support.apple.com/en-us/HT213538 Release Notes, Vendor Advisory ([email protected])
http://seclists.org/fulldisclosure/2022/Dec/20 Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://seclists.org/fulldisclosure/2022/Dec/23 Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://seclists.org/fulldisclosure/2022/Dec/26 Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://seclists.org/fulldisclosure/2022/Dec/27 (af854a3a-2127-422b-91ae-364da2661108)
https://support.apple.com/en-us/HT213530 Release Notes, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://support.apple.com/en-us/HT213532 Release Notes, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://support.apple.com/en-us/HT213535 Release Notes, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://support.apple.com/en-us/HT213536 Release Notes, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://support.apple.com/en-us/HT213538 Release Notes, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)