Lucene search

[email protected]NVD:CVE-2022-26764

HistoryMay 26, 2022 - 8:15 p.m.

CVE-2022-26764

2022-05-2620:15:09

CWE-787

[email protected]

web.nvd.nist.gov

2.6 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:N/I:P/A:N

4.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N

0.001 Low

EPSS

Percentile

23.9%

JSON

A memory corruption issue was addressed with improved validation. This issue is fixed in watchOS 8.6, tvOS 15.5, macOS Monterey 12.4, iOS 15.5 and iPadOS 15.5. An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations.

Affected configurations

NVD

Node

appleipadosRange<15.5

appleiphone_osRange<15.5

applemacosRange12.0–12.4

appletvosRange<15.5

applewatchosRange<8.6

References

support.apple.com/en-us/HT213253

support.apple.com/en-us/HT213254

support.apple.com/en-us/HT213257

support.apple.com/en-us/HT213258

2.6 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:N/I:P/A:N

4.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N

0.001 Low

EPSS

Percentile

23.9%

JSON

Related for NVD:CVE-2022-26764

cve1 cvelist1 prion1 apple4 nessus2 openvas1