7.8

CVE-2022-42800

This issue was addressed with improved checks. This issue is fixed in iOS 15.7.1 and iPadOS 15.7.1, macOS Ventura 13, watchOS 9.1, iOS 16.1 and iPadOS 16, macOS Monterey 12.6.1, macOS Big Sur 11.7.1. A user may be able to cause unexpected app termination or arbitrary code execution.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AppleiPadOS Version < 15.7.1
AppleiPhone OS Version < 15.7.1
ApplemacOS Version >= 11.0 < 11.7.1
ApplemacOS Version >= 12.0 < 12.6.1
ApplewatchOS Version < 9.1
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.34% 0.259
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
134c704f-9b21-4f2e-91b3-4a467353bcc0 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

https://support.apple.com/en-us/HT213488
Vendor Advisory
Release Notes
https://support.apple.com/en-us/HT213493
Vendor Advisory
Release Notes
https://support.apple.com/en-us/HT213494
Vendor Advisory
Release Notes
https://support.apple.com/en-us/HT213489
Vendor Advisory
Release Notes
https://support.apple.com/en-us/HT213490
Vendor Advisory
Release Notes
https://support.apple.com/en-us/HT213491
Vendor Advisory
Release Notes