Vulnerability Name: | CVE-2022-26701 (CCN-226599) | ||||||||||||
Assigned: | 2022-05-16 | ||||||||||||
Published: | 2022-05-16 | ||||||||||||
Updated: | 2022-06-08 | ||||||||||||
Summary: | A race condition was addressed with improved locking. This issue is fixed in tvOS 15.5, macOS Monterey 12.4, iOS 15.5 and iPadOS 15.5. An application may be able to execute arbitrary code with kernel privileges. | ||||||||||||
CVSS v3 Severity: | 7.5 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H) 6.5 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
6.8 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
| ||||||||||||
CVSS v2 Severity: | 7.6 High (CVSS v2 Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C)
| ||||||||||||
Vulnerability Type: | CWE-362 | ||||||||||||
Vulnerability Consequences: | Gain Privileges | ||||||||||||
References: | Source: MITRE Type: CNA CVE-2022-26701 Source: XF Type: UNKNOWN apple-ios-cve202226701-priv-esc(226599) Source: CCN Type: Apple security document HT213254 About the security content of tvOS 15.5 Source: MISC Type: Release Notes, Vendor Advisory https://support.apple.com/en-us/HT213254 Source: MISC Type: Release Notes, Vendor Advisory https://support.apple.com/en-us/HT213257 Source: CCN Type: Apple security document HT213258 About the security content of iOS 15.5 and iPadOS 15.5 Source: MISC Type: Release Notes, Vendor Advisory https://support.apple.com/en-us/HT213258 | ||||||||||||
Vulnerable Configuration: | Configuration 1: Denotes that component is vulnerable | ||||||||||||
BACK |