Apple Ios 15.5 And Ipados vulnerabilities

CVE-2022-26738 [HIGH] CVE-2022-26738: iOS 15.5 and iPadOS 15.5 Apple Security Update: About the security content of iOS 15.5 and iPadOS 15.5 Product: iOS 15.5 and iPadOS Version: 15.5 CVE: CVE-2022-26738 Component: AVEVideoEncoder Impact: An application may be able to execute arbitrary code with kernel privileges Description: An out-of-bounds write issue was addressed with improved bounds checking.

CVE-2022-26700 [HIGH] CVE-2022-26700: iOS 15.5 and iPadOS 15.5 Apple Security Update: About the security content of iOS 15.5 and iPadOS 15.5 Product: iOS 15.5 and iPadOS Version: 15.5 CVE: CVE-2022-26700 Component: WebKit Impact: Processing maliciously crafted web content may lead to code execution Description: A memory corruption issue was addressed with improved state management.

CVE-2022-26771 [HIGH] CVE-2022-26771: iOS 15.5 and iPadOS 15.5 Apple Security Update: About the security content of iOS 15.5 and iPadOS 15.5 Product: iOS 15.5 and iPadOS Version: 15.5 CVE: CVE-2022-26771 Component: IOSurfaceAccelerator Impact: A malicious application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved state management.

CVE-2022-26701 [HIGH] CVE-2022-26701: iOS 15.5 and iPadOS 15.5 Apple Security Update: About the security content of iOS 15.5 and iPadOS 15.5 Product: iOS 15.5 and iPadOS Version: 15.5 CVE: CVE-2022-26701 Component: IOKit Impact: An application may be able to execute arbitrary code with kernel privileges Description: A race condition was addressed with improved locking.

CVE-2022-26714 [HIGH] CVE-2022-26714: iOS 15.5 and iPadOS 15.5 Apple Security Update: About the security content of iOS 15.5 and iPadOS 15.5 Product: iOS 15.5 and iPadOS Version: 15.5 CVE: CVE-2022-26714 Component: Kernel Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved validation.

CVE-2022-26736 [HIGH] CVE-2022-26736: iOS 15.5 and iPadOS 15.5 Apple Security Update: About the security content of iOS 15.5 and iPadOS 15.5 Product: iOS 15.5 and iPadOS Version: 15.5 CVE: CVE-2022-26736 Component: AVEVideoEncoder Impact: An application may be able to execute arbitrary code with kernel privileges Description: An out-of-bounds write issue was addressed with improved bounds checking.

CVE-2022-26757 [HIGH] CVE-2022-26757: iOS 15.5 and iPadOS 15.5 Apple Security Update: About the security content of iOS 15.5 and iPadOS 15.5 Product: iOS 15.5 and iPadOS Version: 15.5 CVE: CVE-2022-26757 Component: Kernel Impact: An application may be able to execute arbitrary code with kernel privileges Description: A use after free issue was addressed with improved memory management.

CVE-2022-26704 [HIGH] CVE-2022-26704: iOS 15.5 and iPadOS 15.5 Apple Security Update: About the security content of iOS 15.5 and iPadOS 15.5 Product: iOS 15.5 and iPadOS Version: 15.5 CVE: CVE-2022-26704 Component: Spotlight Impact: An app may be able to gain elevated privileges Description: A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks.

CVE-2022-26744 [HIGH] CVE-2022-26744: iOS 15.5 and iPadOS 15.5 Apple Security Update: About the security content of iOS 15.5 and iPadOS 15.5 Product: iOS 15.5 and iPadOS Version: 15.5 CVE: CVE-2022-26744 Component: GPU Drivers Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved state management.

CVE-2022-22677 [MEDIUM] CVE-2022-22677: iOS 15.5 and iPadOS 15.5 Apple Security Update: About the security content of iOS 15.5 and iPadOS 15.5 Product: iOS 15.5 and iPadOS Version: 15.5 CVE: CVE-2022-22677 Component: WebRTC Impact: Video self-preview in a webRTC call may be interrupted if the user answers a phone call Description: A logic issue in the handling of concurrent media was addressed with improved state handling.

CVE-2022-26731 [MEDIUM] CVE-2022-26731: iOS 15.5 and iPadOS 15.5 Apple Security Update: About the security content of iOS 15.5 and iPadOS 15.5 Product: iOS 15.5 and iPadOS Version: 15.5 CVE: CVE-2022-26731 Component: Safari Private Browsing Impact: A malicious website may be able to track users in Safari private browsing mode Description: A logic issue was addressed with improved state management.

CVE-2022-26764 [MEDIUM] CVE-2022-26764: iOS 15.5 and iPadOS 15.5 Apple Security Update: About the security content of iOS 15.5 and iPadOS 15.5 Product: iOS 15.5 and iPadOS Version: 15.5 CVE: CVE-2022-26764 Component: Kernel Impact: An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations Description: A memory corruption issue was addressed with improved validation.

CVE-2022-26766 [MEDIUM] CVE-2022-26766: iOS 15.5 and iPadOS 15.5 Apple Security Update: About the security content of iOS 15.5 and iPadOS 15.5 Product: iOS 15.5 and iPadOS Version: 15.5 CVE: CVE-2022-26766 Component: Security Impact: A malicious app may be able to bypass signature validation Description: A certificate parsing issue was addressed with improved checks.

CVE-2022-26745 [MEDIUM] CVE-2022-26745: iOS 15.5 and iPadOS 15.5 Apple Security Update: About the security content of iOS 15.5 and iPadOS 15.5 Product: iOS 15.5 and iPadOS Version: 15.5 CVE: CVE-2022-26745 Component: Wi-Fi Impact: A malicious application may disclose restricted memory Description: A memory corruption issue was addressed with improved validation.

CVE-2022-32781 [MEDIUM] CVE-2022-32781: iOS 15.5 and iPadOS 15.5 Apple Security Update: About the security content of iOS 15.5 and iPadOS 15.5 Product: iOS 15.5 and iPadOS Version: 15.5 CVE: CVE-2022-32781 Component: FaceTime Impact: An app with root privileges may be able to access private information Description: This issue was addressed by enabling hardened runtime.

CVE-2015-4142 [MEDIUM] CVE-2015-4142: iOS 15.5 and iPadOS 15.5 Apple Security Update: About the security content of iOS 15.5 and iPadOS 15.5 Product: iOS 15.5 and iPadOS Version: 15.5 CVE: CVE-2015-4142 Component: Wi-Fi Impact: A remote attacker may be able to cause a denial of service Description: This issue was addressed with improved checks.

CVE-2022-26706 [MEDIUM] CVE-2022-26706: iOS 15.5 and iPadOS 15.5 Apple Security Update: About the security content of iOS 15.5 and iPadOS 15.5 Product: iOS 15.5 and iPadOS Version: 15.5 CVE: CVE-2022-26706 Component: LaunchServices Impact: A sandboxed process may be able to circumvent sandbox restrictions Description: An access issue was addressed with additional sandbox restrictions on third-party applications.

CVE-2022-26726 [MEDIUM] CVE-2022-26726: iOS 15.5 and iPadOS 15.5 Apple Security Update: About the security content of iOS 15.5 and iPadOS 15.5 Product: iOS 15.5 and iPadOS Version: 15.5 CVE: CVE-2022-26726 Component: TCC Impact: An app may be able to bypass Privacy preferences Description: This issue was addressed with improved checks.

CVE-2022-26765 [MEDIUM] CVE-2022-26765: iOS 15.5 and iPadOS 15.5 Apple Security Update: About the security content of iOS 15.5 and iPadOS 15.5 Product: iOS 15.5 and iPadOS Version: 15.5 CVE: CVE-2022-26765 Component: Kernel Impact: A malicious attacker with arbitrary read and write capability may be able to bypass Pointer Authentication Description: A race condition was addressed with improved state handling.

CVE-2022-26703 [LOW] CVE-2022-26703: iOS 15.5 and iPadOS 15.5 Apple Security Update: About the security content of iOS 15.5 and iPadOS 15.5 Product: iOS 15.5 and iPadOS Version: 15.5 CVE: CVE-2022-26703 Component: Shortcuts Impact: A person with physical access to an iOS device may be able to access photos from the lock screen Description: An authorization issue was addressed with improved state management.