CVE-2022-22629

Summary

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.3, Safari 15.4, watchOS 8.5, iTunes 12.12.3 for Windows, iOS 15.4 and iPadOS 15.4, tvOS 15.4. Processing maliciously crafted web content may lead to arbitrary code execution.

Affected Software

VendorProductVersion RangeStatus
AppleSafariunspecified < 15.4affected
AppletvOSunspecified < 15.4affected
AppletvOSunspecified < 12.3affected
AppletvOSunspecified < 15.4affected
ApplewatchOSunspecified < 8.5affected
ApplewatchOSunspecified < 12.12affected
ApplewatchOSunspecified < 12.12affected

Weaknesses

  • Processing maliciously crafted web content may lead to arbitrary code execution

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References