| Vulnerability Name: | CVE-2022-32864 (CCN-235795) | ||||||||||||
| Assigned: | 2022-09-12 | ||||||||||||
| Published: | 2022-09-12 | ||||||||||||
| Updated: | 2022-11-04 | ||||||||||||
| Summary: | The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.6, iOS 15.7 and iPadOS 15.7, iOS 16, macOS Big Sur 11.7. An app may be able to disclose kernel memory. | ||||||||||||
| CVSS v3 Severity: | 5.5 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N) 4.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C)
5.4 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C)
| ||||||||||||
| CVSS v2 Severity: | 4.9 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:N/A:N)
| ||||||||||||
| Vulnerability Type: | CWE-noinfo | ||||||||||||
| Vulnerability Consequences: | Obtain Information | ||||||||||||
| References: | Source: MITRE Type: CNA CVE-2022-32864 Source: FULLDISC Type: Mailing List, Third Party Advisory 20221030 APPLE-SA-2022-10-24-2 macOS Ventura 13 Source: FULLDISC Type: Mailing List, Third Party Advisory 20221030 APPLE-SA-2022-10-27-3 Additional information for APPLE-SA-2022-09-12-1 iOS 16 Source: FULLDISC Type: Mailing List, Third Party Advisory 20221030 APPLE-SA-2022-10-27-4 Additional information for APPLE-SA-2022-09-12-2 iOS 15.7 and iPadOS 15.7 Source: FULLDISC Type: Mailing List, Third Party Advisory 20221030 APPLE-SA-2022-10-27-5 Additional information for APPLE-SA-2022-10-24-2 macOS Ventura 13 Source: FULLDISC Type: Mailing List, Third Party Advisory 20221030 APPLE-SA-2022-10-27-7 Additional information for APPLE-SA-2022-09-12-4 macOS Monterey 12.6 Source: FULLDISC Type: Mailing List, Third Party Advisory 20221030 APPLE-SA-2022-10-27-9 Additional information for APPLE-SA-2022-09-12-3 macOS Big Sur 11.7 Source: FULLDISC Type: Mailing List, Third Party Advisory 20221030 APPLE-SA-2022-10-27-11 tvOS 16 Source: FULLDISC Type: Mailing List, Third Party Advisory 20221030 APPLE-SA-2022-10-27-13 watchOS 9 Source: XF Type: UNKNOWN apple-ios-cve202232864-info-disc(235795) Source: MISC Type: Release Notes, Vendor Advisory https://support.apple.com/en-us/HT213443 Source: CCN Type: Apple security document HT213444 About the security content of macOS Monterey 12.6 Source: MISC Type: Release Notes, Vendor Advisory https://support.apple.com/en-us/HT213444 Source: CCN Type: Apple security document HT213445 About the security content of iOS 15.7 and iPadOS 15.7 Source: MISC Type: Release Notes, Vendor Advisory https://support.apple.com/en-us/HT213445 Source: CCN Type: Apple security document HT213446 About the security content of iOS 16 Source: MISC Type: Release Notes, Vendor Advisory https://support.apple.com/en-us/HT213446 Source: CONFIRM Type: Vendor Advisory https://support.apple.com/kb/HT213486 Source: CONFIRM Type: Vendor Advisory https://support.apple.com/kb/HT213487 Source: CONFIRM Type: Vendor Advisory https://support.apple.com/kb/HT213488 | ||||||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||||||
| BACK | |||||||||||||