CVE-2022-26764
4.7
CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N
Summary
A memory corruption issue was addressed with improved validation. This issue is fixed in watchOS 8.6, tvOS 15.5, macOS Monterey 12.4, iOS 15.5 and iPadOS 15.5. An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Apple | watchOS | unspecified < 8.6 | affected |
| Apple | watchOS | unspecified < 15.5 | affected |
| Apple | watchOS | unspecified < 12.4 | affected |
| Apple | watchOS | unspecified < 15.5 | affected |
Weaknesses
- An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations
ADP Enrichment
CVE Program Container
Additional References
- https://support.apple.com/en-us/HT213258
- https://support.apple.com/en-us/HT213253
- https://support.apple.com/en-us/HT213254
- https://support.apple.com/en-us/HT213257
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://support.apple.com/en-us/HT213258
- https://support.apple.com/en-us/HT213253
- https://support.apple.com/en-us/HT213254
- https://support.apple.com/en-us/HT213257
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.