VDB
CVE-2022-22636
CVE-2022-22636
PUBLISHED
CVSS 9.300000190734863 CRITICAL
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in tvOS 15.4, iOS 15.4 and iPadOS 15.4. An application may be able to execute arbitrary code with kernel privileges.
EPSS 0.21% · 43.8th percentile
Risk Scores
CVSS v2.0
9.300000190734863
EPSS Score
0.21%
43.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| apple | tvos | 0 |
| apple | iphone_os | 0 |
| Apple | tvOS | unspecified |
| Apple | iOS and iPadOS | unspecified |
| apple | ipados | 0 |
Timeline
- Jun 28, 2021 PoC Published
- Dec 11, 2021 PoC Published
- Dec 13, 2021 PoC Published
- Mar 15, 2022 CVE Published
- Mar 19, 2022 EPSS Score
- Mar 25, 2022 EPSS Score
- May 9, 2022 EPSS Score
- Jun 7, 2022 PoC Published
- Jun 29, 2022 EPSS Score
- Aug 20, 2022 EPSS Score
- Sep 16, 2022 PoC Published
- Oct 10, 2022 EPSS Score
References
- https://support.apple.com/fr-fr/HT213191 advisory
- https://support.apple.com/fr-fr/HT213182 advisory
- https://support.apple.com/fr-fr/HT213184 advisory
- https://support.apple.com/fr-fr/HT213185 advisory
- https://support.apple.com/fr-fr/HT213183 advisory
- https://support.apple.com/fr-fr/HT213188 advisory
- https://support.apple.com/fr-fr/HT213190 advisory
- https://support.apple.com/fr-fr/HT213193 advisory
- https://support.apple.com/fr-fr/HT213189 advisory
- https://support.apple.com/en-us/HT213182 url
- https://support.apple.com/en-us/HT213186 url
- https://nvd.nist.gov/vuln/detail/CVE-2022-22636 advisory