PT-2022-18054 · Apple · Ipados+5

Izobashi

Published

2022-05-16

Updated

2022-06-07

CVE-2022-26751

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions iTunes versions prior to 12.12.4 iOS versions prior to 15.5 iPadOS versions prior to 15.5 macOS Big Sur versions prior to 11.6.6 macOS Monterey versions prior to 12.4

Description A memory corruption issue was addressed with improved input validation. Processing a maliciously crafted image may lead to arbitrary code execution.

Recommendations For iTunes versions prior to 12.12.4, update to version 12.12.4 or later. For iOS versions prior to 15.5, update to version 15.5 or later. For iPadOS versions prior to 15.5, update to version 15.5 or later. For macOS Big Sur versions prior to 11.6.6, update to version 11.6.6 or later. For macOS Monterey versions prior to 12.4, update to version 12.4 or later.

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

CVE-2022-26751

ZDI-22-794

Affected Products

Apple Macos

Ios

Ipados

Itunes

Macos Big Sur

Macos Monterey

PT-2022-18054 · Apple · Ipados+5

CVE-2022-26751

Weakness Enumeration

Related Identifiers

Affected Products

References · 12