CVE-2022-32788

CRITICAL

Apple Ipados < 15.6 - Buffer Overflow

Title source: rule

Description

A buffer overflow was addressed with improved bounds checking. This issue is fixed in watchOS 8.7, tvOS 15.6, iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5. A remote user may be able to cause kernel code execution.

References (4)

Core 4

Core References

Release Notes, Vendor Advisory x_refsource_misc

https://support.apple.com/en-us/HT213345

Release Notes, Vendor Advisory x_refsource_misc

https://support.apple.com/en-us/HT213340

Release Notes, Vendor Advisory x_refsource_misc

https://support.apple.com/en-us/HT213342

Release Notes, Vendor Advisory x_refsource_misc

https://support.apple.com/en-us/HT213346

Scores

CVSS v3 9.8

EPSS 0.0089

EPSS Percentile 75.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact total

Details

CWE

CWE-120

Status published

Products (5)

apple/ipados < 15.6

apple/iphone_os < 15.6

apple/macos 12.0.0 - 12.5

apple/tvos < 15.6

apple/watchos < 8.7

Published Sep 20, 2022

Tracked Since Feb 18, 2026