CVE-2022-22601 — Vulnetix

Try Vulnetix Request Demo

CVE-2022-22601 PUBLISHED CVSS 7.800000190734863 HIGH

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in Xcode 13.3. Opening a maliciously crafted file may lead to unexpected application termination or arbitrary code execution.

EPSS 0.42% · 61.6th percentile

Risk Scores

CVSS v3.1

7.800000190734863

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS Score

0.42%

61.6th percentile

Affected Products

Vendor	Product	Versions
apple	xcode	0
Apple	Xcode	unspecified

Timeline

Jun 28, 2021 PoC Published
Dec 11, 2021 PoC Published
Dec 13, 2021 PoC Published
Mar 15, 2022 CVE Published
Mar 19, 2022 EPSS Score
Mar 24, 2022 EPSS Score
May 9, 2022 EPSS Score
Jun 7, 2022 PoC Published
Jun 28, 2022 EPSS Score
Aug 19, 2022 EPSS Score
Sep 16, 2022 PoC Published
Oct 8, 2022 EPSS Score

References

https://support.apple.com/fr-fr/HT213191 advisory
https://support.apple.com/fr-fr/HT213182 advisory
https://support.apple.com/fr-fr/HT213184 advisory
https://support.apple.com/fr-fr/HT213185 advisory
https://support.apple.com/fr-fr/HT213183 advisory
https://support.apple.com/fr-fr/HT213188 advisory
https://support.apple.com/fr-fr/HT213190 advisory
https://support.apple.com/fr-fr/HT213193 advisory
https://support.apple.com/fr-fr/HT213189 advisory
https://support.apple.com/en-us/HT213189 url
https://nvd.nist.gov/vuln/detail/CVE-2022-22601 advisory

Open in Interactive Console →