9.3

CVE-2022-22579

EPSS 0.3%
Published 18.03.2022 18:15:12
Last modified 21.11.2024 06:47:03
Source product-security@apple.com
Teams watchlist Login
Open Login

An information disclosure issue was addressed with improved state management. This issue is fixed in iOS 15.3 and iPadOS 15.3, tvOS 15.3, Security Update 2022-001 Catalina, macOS Monterey 12.2, macOS Big Sur 11.6.3. Processing a maliciously crafted STL file may lead to unexpected application termination or arbitrary code execution.

Affected products Warnungen 0 Metrics 3 CWE 0 References 8

Data is provided by the National Vulnerability Database (NVD)

Apple ≫ iPadOS Version < 15.3

Apple ≫ iPhone OS Version < 15.3

Apple ≫ macOS X Version < 10.15.7

Apple ≫ macOS X Version10.15.7 Update-

Apple ≫ macOS X Version10.15.7 Updatesecurity_update_2020

Apple ≫ macOS X Version10.15.7 Updatesecurity_update_2020-001

Apple ≫ macOS X Version10.15.7 Updatesecurity_update_2020-005

Apple ≫ macOS X Version10.15.7 Updatesecurity_update_2020-007

Apple ≫ macOS X Version10.15.7 Updatesecurity_update_2021-001

Apple ≫ macOS X Version10.15.7 Updatesecurity_update_2021-002

Apple ≫ macOS X Version10.15.7 Updatesecurity_update_2021-003

Apple ≫ macOS X Version10.15.7 Updatesecurity_update_2021-006

Apple ≫ macOS X Version10.15.7 Updatesecurity_update_2021-007

Apple ≫ macOS X Version10.15.7 Updatesecurity_update_2021-008

Apple ≫ macOS X Version10.15.7 Updatesupplemental_update

Apple ≫ macOS Version < 11.6.3

Apple ≫ macOS Version >= 12.0.0 < 12.2

Apple ≫ tvOS Version < 15.3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.3%	0.527

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvd@nist.gov	9.3	8.6	10	AV:N/AC:M/Au:N/C:C/I:C/A:C

https://support.apple.com/en-us/HT213055

Vendor Advisory

Release Notes

https://support.apple.com/en-us/HT213056

Vendor Advisory

Release Notes

https://support.apple.com/en-us/HT213053

Vendor Advisory

Release Notes

https://support.apple.com/en-us/HT213054

Vendor Advisory

Release Notes

https://support.apple.com/en-us/HT213057

Vendor Advisory

Release Notes

https://nvd.nist.gov/vuln/detail/CVE-2022-22579

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-22579

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-22579

EUVD