Apple Ios 15.4 And Ipados vulnerabilities

CVE-2022-22596 [HIGH] CVE-2022-22596: iOS 15.4 and iPadOS 15.4 Apple Security Update: About the security content of iOS 15.4 and iPadOS 15.4 Product: iOS 15.4 and iPadOS Version: 15.4 CVE: CVE-2022-22596 Component: Kernel Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved validation.

CVE-2022-22613 [HIGH] CVE-2022-22613: iOS 15.4 and iPadOS 15.4 Apple Security Update: About the security content of iOS 15.4 and iPadOS 15.4 Product: iOS 15.4 and iPadOS Version: 15.4 CVE: CVE-2022-22613 Component: Kernel Impact: An application may be able to execute arbitrary code with kernel privileges Description: An out-of-bounds write issue was addressed with improved bounds checking.

CVE-2022-22666 [HIGH] CVE-2022-22666: iOS 15.4 and iPadOS 15.4 Apple Security Update: About the security content of iOS 15.4 and iPadOS 15.4 Product: iOS 15.4 and iPadOS Version: 15.4 CVE: CVE-2022-22666 Component: AppleAVD Impact: Processing a maliciously crafted image may lead to heap corruption Description: A memory corruption issue was addressed with improved validation.

CVE-2022-22640 [HIGH] CVE-2022-22640: iOS 15.4 and iPadOS 15.4 Apple Security Update: About the security content of iOS 15.4 and iPadOS 15.4 Product: iOS 15.4 and iPadOS Version: 15.4 CVE: CVE-2022-22640 Component: Kernel Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved validation.

CVE-2022-22636 [HIGH] CVE-2022-22636: iOS 15.4 and iPadOS 15.4 Apple Security Update: About the security content of iOS 15.4 and iPadOS 15.4 Product: iOS 15.4 and iPadOS Version: 15.4 CVE: CVE-2022-22636 Component: AVEVideoEncoder Impact: An application may be able to execute arbitrary code with kernel privileges Description: An out-of-bounds write issue was addressed with improved bounds checking.

CVE-2022-22634 [HIGH] CVE-2022-22634: iOS 15.4 and iPadOS 15.4 Apple Security Update: About the security content of iOS 15.4 and iPadOS 15.4 Product: iOS 15.4 and iPadOS Version: 15.4 CVE: CVE-2022-22634 Component: AVEVideoEncoder Impact: A malicious application may be able to execute arbitrary code with kernel privileges Description: A buffer overflow was addressed with improved bounds checking.

CVE-2022-22614 [HIGH] CVE-2022-22614: iOS 15.4 and iPadOS 15.4 Apple Security Update: About the security content of iOS 15.4 and iPadOS 15.4 Product: iOS 15.4 and iPadOS Version: 15.4 CVE: CVE-2022-22614 Component: Kernel Impact: An application may be able to execute arbitrary code with kernel privileges Description: A use after free issue was addressed with improved memory management.

CVE-2022-22628 [HIGH] CVE-2022-22628: iOS 15.4 and iPadOS 15.4 Apple Security Update: About the security content of iOS 15.4 and iPadOS 15.4 Product: iOS 15.4 and iPadOS Version: 15.4 CVE: CVE-2022-22628 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: A use after free issue was addressed with improved memory management.

CVE-2022-22638 [MEDIUM] CVE-2022-22638: iOS 15.4 and iPadOS 15.4 Apple Security Update: About the security content of iOS 15.4 and iPadOS 15.4 Product: iOS 15.4 and iPadOS Version: 15.4 CVE: CVE-2022-22638 Component: Kernel Impact: An attacker in a privileged position may be able to perform a denial of service attack Description: A null pointer dereference was addressed with improved validation.

CVE-2022-22600 [MEDIUM] CVE-2022-22600: iOS 15.4 and iPadOS 15.4 Apple Security Update: About the security content of iOS 15.4 and iPadOS 15.4 Product: iOS 15.4 and iPadOS Version: 15.4 CVE: CVE-2022-22600 Component: Sandbox Impact: A malicious application may be able to bypass certain Privacy preferences Description: The issue was addressed with improved permissions logic.

CVE-2022-22663 [MEDIUM] CVE-2022-22663: iOS 15.4 and iPadOS 15.4 Apple Security Update: About the security content of iOS 15.4 and iPadOS 15.4 Product: iOS 15.4 and iPadOS Version: 15.4 CVE: CVE-2022-22663 Component: CoreTypes Impact: A malicious application may bypass Gatekeeper checks Description: This issue was addressed with improved checks to prevent unauthorized actions.

CVE-2022-22668 [MEDIUM] CVE-2022-22668: iOS 15.4 and iPadOS 15.4 Apple Security Update: About the security content of iOS 15.4 and iPadOS 15.4 Product: iOS 15.4 and iPadOS Version: 15.4 CVE: CVE-2022-22668 Component: Wi-Fi Impact: A malicious application may be able to leak sensitive user information Description: A logic issue was addressed with improved restrictions.

CVE-2021-30946 [MEDIUM] CVE-2021-30946: iOS 15.4 and iPadOS 15.4 Apple Security Update: About the security content of iOS 15.4 and iPadOS 15.4 Product: iOS 15.4 and iPadOS Version: 15.4 CVE: CVE-2021-30946 Component: LaunchServices Impact: An app may be able to bypass certain Privacy preferences Description: A logic issue was addressed with improved restrictions.

CVE-2022-22655 [MEDIUM] CVE-2022-22655: iOS 15.4 and iPadOS 15.4 Apple Security Update: About the security content of iOS 15.4 and iPadOS 15.4 Product: iOS 15.4 and iPadOS Version: 15.4 CVE: CVE-2022-22655 Component: Sandbox Impact: An app may be able to leak sensitive user information Description: An access issue was addressed with improvements to the sandbox.

CVE-2022-22659 [MEDIUM] CVE-2022-22659: iOS 15.4 and iPadOS 15.4 Apple Security Update: About the security content of iOS 15.4 and iPadOS 15.4 Product: iOS 15.4 and iPadOS Version: 15.4 CVE: CVE-2022-22659 Component: NetworkExtension Impact: An attacker in a privileged network position may be able to leak sensitive user information Description: A logic issue was addressed with improved state management.

CVE-2022-22652 [MEDIUM] CVE-2022-22652: iOS 15.4 and iPadOS 15.4 Apple Security Update: About the security content of iOS 15.4 and iPadOS 15.4 Product: iOS 15.4 and iPadOS Version: 15.4 CVE: CVE-2022-22652 Component: Cellular Impact: A person with physical access may be able to view and modify the carrier account information and settings from the lock screen Description: The GSMA authentication panel could be presented on the lock screen. The issue was resolved by requiring device unlock to inte

CVE-2022-22662 [MEDIUM] CVE-2022-22662: iOS 15.4 and iPadOS 15.4 Apple Security Update: About the security content of iOS 15.4 and iPadOS 15.4 Product: iOS 15.4 and iPadOS Version: 15.4 CVE: CVE-2022-22662 Component: WebKit Impact: Processing maliciously crafted web content may disclose sensitive user information Description: A cookie management issue was addressed with improved state management.

CVE-2022-22671 [MEDIUM] CVE-2022-22671: iOS 15.4 and iPadOS 15.4 Apple Security Update: About the security content of iOS 15.4 and iPadOS 15.4 Product: iOS 15.4 and iPadOS Version: 15.4 CVE: CVE-2022-22671 Component: VoiceOver Impact: A person with physical access to an iOS device may be able to access photos from the lock screen Description: An authentication issue was addressed with improved state management.

CVE-2022-22622 [MEDIUM] CVE-2022-22622: iOS 15.4 and iPadOS 15.4 Apple Security Update: About the security content of iOS 15.4 and iPadOS 15.4 Product: iOS 15.4 and iPadOS Version: 15.4 CVE: CVE-2022-22622 Component: Markup Impact: A person with physical access to an iOS device may be able to see sensitive information via keyboard suggestions Description: This issue was addressed with improved checks.

CVE-2022-22621 [MEDIUM] CVE-2022-22621: iOS 15.4 and iPadOS 15.4 Apple Security Update: About the security content of iOS 15.4 and iPadOS 15.4 Product: iOS 15.4 and iPadOS Version: 15.4 CVE: CVE-2022-22621 Component: UIKit Impact: A person with physical access to an iOS device may be able to see sensitive information via keyboard suggestions Description: This issue was addressed with improved checks.