Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2022-26766

A certificate parsing issue was addressed with improved checks. This issue is fixed in tvOS 15.5, iOS 15.5 and iPadOS 15.5, Security Update 2022-004 Catalina, watchOS 8.6, macOS Big Sur 11.6.6, macOS Monterey 12.4. A malicious app may be able to bypass signature validation.

  • Published: May 26, 2022
  • Updated: Apr 14, 2023
  • CVE: CVE-2022-26766
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 5.5
  • AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

CVSS v2:

  • Severity: Low
  • Score: 4.3
  • AV:N/AC:M/Au:N/C:N/I:P/A:N

CWEs:

OWASP TOP 10:

Software From Fixed in
apple / mac_os_x - 10.15.7
apple / mac_os_x 10.15.7 10.15.7.x
apple / mac_os_x 10.15.7-security_update_2020-001 10.15.7-security_update_2020-001.x
apple / mac_os_x 10.15.7-security_update_2021-001 10.15.7-security_update_2021-001.x
apple / mac_os_x 10.15.7-security_update_2021-002 10.15.7-security_update_2021-002.x
apple / mac_os_x 10.15.7-security_update_2021-003 10.15.7-security_update_2021-003.x
apple / mac_os_x 10.15.7-security_update_2021-004 10.15.7-security_update_2021-004.x
apple / mac_os_x 10.15.7-security_update_2021-005 10.15.7-security_update_2021-005.x
apple / mac_os_x 10.15.7-security_update_2021-006 10.15.7-security_update_2021-006.x
apple / mac_os_x 10.15.7-security_update_2021-008 10.15.7-security_update_2021-008.x
apple / mac_os_x 10.15.7-security_update_2021-007 10.15.7-security_update_2021-007.x
apple / mac_os_x 10.15.7-security_update_2022-002 10.15.7-security_update_2022-002.x
apple / mac_os_x 10.15.7-security_update_2022-001 10.15.7-security_update_2022-001.x
apple / macos 11.0 11.6.6
apple / mac_os_x 10.15.7-security_update_2022-003 10.15.7-security_update_2022-003.x
apple / iphone_os - 15.5
apple / watchos - 8.6
apple / tvos - 15.5
apple / ipados - 15.5
apple / macos 12.0 12.4