VDB
CVE-2022-22605
CVE-2022-22605
PUBLISHED
CVSS 7.800000190734863 HIGH
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in Xcode 13.3. Opening a maliciously crafted file may lead to unexpected application termination or arbitrary code execution.
EPSS 0.42% · 62.1th percentile
Risk Scores
CVSS v3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
0.42%
62.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| apple | xcode | 0 |
| Apple | Xcode | unspecified |
Timeline
- Jun 28, 2021 PoC Published
- Dec 11, 2021 PoC Published
- Dec 13, 2021 PoC Published
- Mar 15, 2022 CVE Published
- Mar 19, 2022 EPSS Score
- Mar 24, 2022 EPSS Score
- May 9, 2022 EPSS Score
- Jun 7, 2022 PoC Published
- Jun 29, 2022 EPSS Score
- Aug 20, 2022 EPSS Score
- Sep 16, 2022 PoC Published
- Oct 10, 2022 EPSS Score
References
- https://support.apple.com/fr-fr/HT213191 advisory
- https://support.apple.com/fr-fr/HT213182 advisory
- https://support.apple.com/fr-fr/HT213184 advisory
- https://support.apple.com/fr-fr/HT213185 advisory
- https://support.apple.com/fr-fr/HT213183 advisory
- https://support.apple.com/fr-fr/HT213188 advisory
- https://support.apple.com/fr-fr/HT213190 advisory
- https://support.apple.com/fr-fr/HT213193 advisory
- https://support.apple.com/fr-fr/HT213189 advisory
- https://support.apple.com/en-us/HT213189 url
- https://nvd.nist.gov/vuln/detail/CVE-2022-22605 advisory