CVE-2022-22612

HIGH

tvOS <15.4-iPadOS <15.4-macOS <12.3-watchOS <8.5 - Memory Corruption

Title source: llm
STIX 2.1

Description

A memory consumption issue was addressed with improved memory handling. This issue is fixed in tvOS 15.4, iOS 15.4 and iPadOS 15.4, iTunes 12.12.3 for Windows, watchOS 8.5, macOS Monterey 12.3. Processing a maliciously crafted image may lead to heap corruption.

References (5)

Core 5
Core References
Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT213182
Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT213193
Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT213183
Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT213186
Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT213188

Scores

CVSS v3 7.8
EPSS 0.0077
EPSS Percentile 51.1%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-787
Status published
Products (6)
apple/ipados < 15.4
apple/iphone_os < 15.4
apple/itunes < 12.12.3
apple/macos 12.0 - 12.3
apple/tvos < 15.4
apple/watchos < 8.5
Published Mar 18, 2022
Tracked Since Feb 18, 2026