CVE-2022-32941

The issue was addressed with improved bounds checks. This issue is fixed in iOS 15.7.1 and iPadOS 15.7.1, macOS Ventura 13, iOS 16.1 and iPadOS 16, macOS Monterey 12.6.1, macOS Big Sur 11.7.1. A buffer overflow may result in arbitrary code execution.
Classic Buffer Overflow
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
appleCNA
---
---
CVEADP
---
---
CISA-ADPADP
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 54%
VendorProductVersion
appleipados
𝑥
< 15.7.1
appleiphone_os
𝑥
< 15.7.1
appleiphone_os
16.0
applemacos
11.0 ≤
𝑥
< 11.7.1
applemacos
12.0.0 ≤
𝑥
< 12.6.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://support.apple.com/en-us/HT213488
https://support.apple.com/en-us/HT213489
https://support.apple.com/en-us/HT213490
https://support.apple.com/en-us/HT213493
https://support.apple.com/en-us/HT213494
https://support.apple.com/en-us/HT213488
https://support.apple.com/en-us/HT213489
https://support.apple.com/en-us/HT213490
https://support.apple.com/en-us/HT213493
https://support.apple.com/en-us/HT213494