CVE-2022-26762Out-of-bounds Write in Apple Macos

CWE-787Out-of-bounds Write4 documents3 sources
Severity
7.8HIGHNVD
EPSS
0.0%
top 85.57%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
Apple MacosApple IpadosApple Iphone OS+2 more
Timeline
PublishedNov 1
Latest updateNov 2

Description

A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.4, iOS 15.5 and iPadOS 15.5. A malicious application may be able to execute arbitrary code with system privileges.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages6 packages

CVEListV5apple/macosunspecified12.4+1
NVDapple/macos12.0.012.4
NVDapple/ipados< 15.5

🔴Vulnerability Details

1
GHSA
GHSA-5gfc-7vhv-5h62: A memory corruption issue was addressed with improved memory handling2022-11-02

📋Vendor Advisories

2
Apple
CVE-2022-26762: iOS 15.5 and iPadOS 15.52022-05-16
Apple
CVE-2022-26762: macOS Monterey 12.42022-05-16