Description
This issue was addressed with improved checks. This issue is fixed in tvOS 15.5, watchOS 8.6, iOS 15.5 and iPadOS 15.5, macOS Monterey 12.4, macOS Big Sur 11.6.6, Security Update 2022-004 Catalina. A remote user may be able to cause a denial-of-service.
References (6)
Core 6
Core References
Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT213255
Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT213256
Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT213258
Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT213253
Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT213254
Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT213257
Scores
CVSS v3
7.5
EPSS
0.0171
EPSS Percentile
82.6%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-400
Status
published
Products (7)
apple/ipados
< 15.5
apple/iphone_os
< 15.5
apple/mac_os_x
10.15.7 security_update_2020-001 (12 CPE variants)
apple/macos
10.15.7
apple/macos
< 10.15.7
apple/tvos
< 15.5
apple/watchos
< 8.6
Published
Sep 23, 2022
Tracked Since
Feb 18, 2026