CVE-2022-22629

CVE Database · CVE-2022-22629

CVE-2022-22629

· HIGHModified

CVSS v3.1

8.8

EPSS

3.52%

Published

Sep 23, 2022

Modified

May 22, 2025

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.3, Safari 15.4, watchOS 8.5, iTunes 12.12.3 for Windows, iOS 15.4 and iPadOS 15.4, tvOS 15.4. Processing maliciously crafted web content may lead to arbitrary code execution.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Weaknesses (CWE)

CWE-787CWE-787

Affected Products (7)

apple · itunes (up to 12.12.3)vulnerable

apple · safari (up to 15.4)vulnerable

apple · ipados (up to 15.4)vulnerable

apple · iphone_os (up to 15.4)vulnerable

apple · macos (up to 12.3)vulnerable

apple · tvos (up to 15.4)vulnerable

apple · watchos (up to 8.5)vulnerable