CVE-2022-22634 — Vulnetix

Try Vulnetix Request Demo

CVE-2022-22634 PUBLISHED CVSS 7.800000190734863 HIGH

A buffer overflow was addressed with improved bounds checking. This issue is fixed in tvOS 15.4, iOS 15.4 and iPadOS 15.4. A malicious application may be able to execute arbitrary code with kernel privileges.

EPSS 0.31% · 53.7th percentile

Risk Scores

CVSS v3.1

7.800000190734863

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS Score

0.31%

53.7th percentile

Affected Products

Vendor	Product	Versions
apple	ipados	0
apple	iphone_os	0
Apple	tvOS	unspecified
apple	tvos	0
Apple	iOS and iPadOS	unspecified

Timeline

Jun 28, 2021 PoC Published
Dec 11, 2021 PoC Published
Dec 13, 2021 PoC Published
Mar 15, 2022 CVE Published
Mar 19, 2022 EPSS Score
Mar 25, 2022 EPSS Score
May 9, 2022 EPSS Score
Jun 7, 2022 PoC Published
Jun 28, 2022 EPSS Score
Aug 19, 2022 EPSS Score
Sep 16, 2022 PoC Published
Oct 8, 2022 EPSS Score

References

https://support.apple.com/fr-fr/HT213191 advisory
https://support.apple.com/fr-fr/HT213182 advisory
https://support.apple.com/fr-fr/HT213184 advisory
https://support.apple.com/fr-fr/HT213185 advisory
https://support.apple.com/fr-fr/HT213183 advisory
https://support.apple.com/fr-fr/HT213188 advisory
https://support.apple.com/fr-fr/HT213190 advisory
https://support.apple.com/fr-fr/HT213193 advisory
https://support.apple.com/fr-fr/HT213189 advisory
https://support.apple.com/en-us/HT213182 url
https://support.apple.com/en-us/HT213186 url
https://nvd.nist.gov/vuln/detail/CVE-2022-22634 advisory

Open in Interactive Console →