PT-2022-21471 · Apple+6 · Ipados+12

Jan Vojtesek

·

Published

2022-07-04

·

Updated

2023-01-09

·

CVE-2022-32792

CVSS v3.1

8.8

High

VectorAV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions iOS versions prior to 15.6 iPadOS versions prior to 15.6 watchOS versions prior to 8.7 tvOS versions prior to 15.6 macOS Monterey versions prior to 12.5 Safari versions prior to 15.6
Description An out-of-bounds write issue was addressed with improved input validation. Processing maliciously crafted web content may lead to arbitrary code execution.
Recommendations For iOS versions prior to 15.6, update to iOS 15.6 or later. For iPadOS versions prior to 15.6, update to iPadOS 15.6 or later. For watchOS versions prior to 8.7, update to watchOS 8.7 or later. For tvOS versions prior to 15.6, update to tvOS 15.6 or later. For macOS Monterey versions prior to 12.5, update to macOS Monterey 12.5 or later. For Safari versions prior to 15.6, update to Safari 15.6 or later.

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

CESA-2022_7704
CVE-2022-32792
DLA-3073-1
DSA-5210-1
DSA-5211-1
MGASA-2022-0287
OPENSUSE-SU-2022_2820-1
OPENSUSE-SU-2022_2826-1
RHSA-2022:7704
RHSA-2022:8054
RHSA-2022_7704
RHSA-2022_8054
RHSA-2025:10364
SUSE-SU-2022:2820-1
SUSE-SU-2022:2821-1
SUSE-SU-2022:2826-1
SUSE-SU-2022:2915-1
SUSE-SU-2022_2820-1
SUSE-SU-2022_2821-1
SUSE-SU-2022_2826-1
SUSE-SU-2022_2915-1
USN-5568-1

Affected Products

Astra Linux
Centos
Linuxmint
Apple Macos
Red Hat
Safari
Suse
Ubuntu
Ios
Ipados
Macos Monterey
Tvos
Watchos