CVE-2022-22587
| CVE Published | 2022-03-18 |
|---|---|
| Related CWE(s) | CWE-787: Out-of-bounds Write |
| Related Vendor(s) | apple |
| Related Product(s) | macos, iphone_os, ipados |
| Exploitation Reported (CISA KEV) | 2022-01-28 |
| CVSS 3 Base Score | 9.8 (CRITICAL) |
| CVSS 3 Attack Complexity | LOW |
| CVSS 3 Attack Vector | NETWORK |
A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 15.3 and iPadOS 15.3, macOS Big Sur 11.6.3, macOS Monterey 12.2. A malicious application may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited..
Cyber Threat Graph Context
Explore how this CVE relates to the wider threat graph