CVE-2022-32899
published 2022-11-01CVE-2022-32899: The issue was addressed with improved memory handling. This issue is fixed in iOS 15.7 and iPadOS 15.7, iOS 16, macOS Ventura 13, watchOS 9. An app may be able…
PriorityP338high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
EPSS
0.08%
24.6th percentile
The issue was addressed with improved memory handling. This issue is fixed in iOS 15.7 and iPadOS 15.7, iOS 16, macOS Ventura 13, watchOS 9. An app may be able to execute arbitrary code with kernel privileges.
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios | — | — |
| apple | ios_15.7_and_ipados | — | — |
| apple | ipados | < 15.7 | 15.7 |
| apple | iphone_os | < 15.7 | 15.7 |
| apple | macos | < 13.0 | 13.0 |
| apple | macos | >= unspecified < 13 | 13 |
| apple | macos | >= unspecified < 16 | 16 |
| apple | macos | >= unspecified < 15.7 | 15.7 |
| apple | macos_ventura | — | — |
| apple | watchos | < 9.0 | 9.0 |
| apple | watchos | >= unspecified < 9 | 9 |
| apple | watchos_9 | — | — |
Apple
CVE-2022-32899: macOS Ventura 13
vendor_apple·2022-10-24·CVSS 7.8
CVE-2022-32899 [HIGH] CVE-2022-32899: macOS Ventura 13
Apple Security Update: About the security content of macOS Ventura 13
Product: macOS Ventura
Version: 13
CVE: CVE-2022-32899
Impact: An app may be able to execute arbitrary code with kernel privileges
Description: The issue was addressed with improved memory handling.
Apple
CVE-2022-32899: watchOS 9
vendor_apple·2022-09-12·CVSS 7.8
CVE-2022-32899 [HIGH] CVE-2022-32899: watchOS 9
Apple Security Update: About the security content of watchOS 9
Product: watchOS 9
CVE: CVE-2022-32899
Impact: An app may be able to execute arbitrary code with kernel privileges
Description: The issue was addressed with improved memory handling.
Apple
CVE-2022-32899: iOS 15.7 and iPadOS 15.7
vendor_apple·2022-09-12·CVSS 7.8
CVE-2022-32899 [HIGH] CVE-2022-32899: iOS 15.7 and iPadOS 15.7
Apple Security Update: About the security content of iOS 15.7 and iPadOS 15.7
Product: iOS 15.7 and iPadOS
Version: 15.7
CVE: CVE-2022-32899
Impact: An app may be able to execute arbitrary code with kernel privileges
Description: The issue was addressed with improved memory handling.
Apple
CVE-2022-32899: iOS 16
vendor_apple·2022-09-12·CVSS 7.8
CVE-2022-32899 [HIGH] CVE-2022-32899: iOS 16
Apple Security Update: About the security content of iOS 16
Product: iOS
Version: 16
CVE: CVE-2022-32899
Impact: An app may be able to execute arbitrary code with kernel privileges
Description: The issue was addressed with improved memory handling.
GHSA
GHSA-87p3-v4w4-q5h8: The issue was addressed with improved memory handling
ghsa_unreviewed·2022-11-02
CVE-2022-32899 [HIGH] GHSA-87p3-v4w4-q5h8: The issue was addressed with improved memory handling
The issue was addressed with improved memory handling. This issue is fixed in iOS 15.7 and iPadOS 15.7, iOS 16, macOS Ventura 13, watchOS 9. An app may be able to execute arbitrary code with kernel privileges.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://support.apple.com/en-us/HT213445https://support.apple.com/en-us/HT213446https://support.apple.com/en-us/HT213486https://support.apple.com/en-us/HT213488https://support.apple.com/en-us/HT213445https://support.apple.com/en-us/HT213446https://support.apple.com/en-us/HT213486https://support.apple.com/en-us/HT213488
2022-11-01
Published