CVE-2022-32888

Summary

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.7, macOS Ventura 13, iOS 16, iOS 15.7 and iPadOS 15.7, watchOS 9, macOS Monterey 12.6, tvOS 16. Processing maliciously crafted web content may lead to arbitrary code execution.

Affected Software

VendorProductVersion RangeStatus
ApplemacOSunspecified < 13affected
ApplemacOSunspecified < 16affected
ApplemacOSunspecified < 11.7affected
ApplemacOSunspecified < 15.7affected
ApplewatchOSunspecified < 9affected
ApplewatchOSunspecified < 16affected
ApplewatchOSunspecified < 12.6affected

Weaknesses

  • Processing maliciously crafted web content may lead to arbitrary code execution

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References