CVE-2022-22638 | SynScan

Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2022-22638

A null pointer dereference was addressed with improved validation. This issue is fixed in tvOS 15.4, iOS 15.4 and iPadOS 15.4, macOS Big Sur 11.6.5, Security Update 2022-003 Catalina, watchOS 8.5, macOS Monterey 12.3. An attacker in a privileged position may be able to perform a denial of service attack.

Published: Mar 18, 2022
Updated: Apr 14, 2023
CVE: CVE-2022-22638
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.5
AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CVSS v2:

Severity: Low
Score: 4
AV:N/AC:L/Au:S/C:N/I:N/A:P

CWEs:

CWE-476

Affected Software
References

Software	From	Fixed in
apple / mac_os_x	10.15	10.15.7
apple / tvos	-	15.4
apple / iphone_os	-	15.4
apple / ipados	-	15.4
apple / watchos	-	8.5
apple / macos	10.15.7	10.15.7.x
apple / macos	12.0	12.3
apple / macos	11.6	11.6.5
apple / mac_os_x	10.15.7-security_update_2022-002	10.15.7-security_update_2022-002.x
apple / mac_os_x	10.15.7-security_update_2022-001	10.15.7-security_update_2022-001.x