CVE-2022-22611
published 2022-03-18CVE-2022-22611: An out-of-bounds read was addressed with improved input validation. This issue is fixed in tvOS 15.4, iOS 15.4 and iPadOS 15.4, iTunes 12.12.3 for Windows…
high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
An out-of-bounds read was addressed with improved input validation. This issue is fixed in tvOS 15.4, iOS 15.4 and iPadOS 15.4, iTunes 12.12.3 for Windows, watchOS 8.5, macOS Monterey 12.3. Processing a maliciously crafted image may lead to arbitrary code execution.
Affected
16 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios_15.4_and_ipados | — | — |
| apple | ios_and_ipados | >= unspecified < 15.4 | 15.4 |
| apple | ipados | < 15.4 | 15.4 |
| apple | iphone_os | < 15.4 | 15.4 |
| apple | itunes | < 12.12.3 | 12.12.3 |
| apple | itunes_12.12.3_for_windows | — | — |
| apple | macos | >= 12.0 < 12.3 | 12.3 |
| apple | macos | >= unspecified < 12.3 | 12.3 |
| apple | macos_monterey | — | — |
| apple | tvos | < 15.4 | 15.4 |
| apple | tvos | — | — |
| apple | tvos | >= unspecified < 15.4 | 15.4 |
| apple | tvos | >= unspecified < 12.12 | 12.12 |
| apple | watchos | < 8.5 | 8.5 |
| apple | watchos | — | — |
| apple | watchos | >= unspecified < 8.5 | 8.5 |