Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2022-32885 (GCVE-0-2022-32885)
Vulnerability from cvelistv5 – Published: 2023-05-08 00:00 – Updated: 2025-01-29 16:20
VLAI
EPSS
Summary
A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5, Safari 15.6. Processing maliciously crafted web content may lead to arbitrary code execution
Severity
8.8 (High)
SSVC
Exploitation: none
Automatable: no
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- Processing maliciously crafted web content may lead to arbitrary code execution
- CWE-787 - Out-of-bounds Write
Assigner
References
Impacted products
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T07:54:03.009Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://support.apple.com/en-us/HT213345"
},
{
"tags": [
"x_transferred"
],
"url": "https://support.apple.com/en-us/HT213346"
},
{
"tags": [
"x_transferred"
],
"url": "https://support.apple.com/en-us/HT213341"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2022-32885",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-01-29T16:20:34.535358Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-787",
"description": "CWE-787 Out-of-bounds Write",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-01-29T16:20:44.138Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "macOS",
"vendor": "Apple",
"versions": [
{
"lessThan": "12.5",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "macOS",
"vendor": "Apple",
"versions": [
{
"lessThan": "15.6",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "macOS",
"vendor": "Apple",
"versions": [
{
"lessThan": "15.6",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5, Safari 15.6. Processing maliciously crafted web content may lead to arbitrary code execution"
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Processing maliciously crafted web content may lead to arbitrary code execution",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2023-06-27T00:00:00.000Z",
"orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
"shortName": "apple"
},
"references": [
{
"url": "https://support.apple.com/en-us/HT213345"
},
{
"url": "https://support.apple.com/en-us/HT213346"
},
{
"url": "https://support.apple.com/en-us/HT213341"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
"assignerShortName": "apple",
"cveId": "CVE-2022-32885",
"datePublished": "2023-05-08T00:00:00.000Z",
"dateReserved": "2022-06-09T00:00:00.000Z",
"dateUpdated": "2025-01-29T16:20:44.138Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2022-32885",
"date": "2026-06-07",
"epss": "0.00257",
"percentile": "0.49301"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"15.6\", \"matchCriteriaId\": \"5CB295E5-F980-40EC-AF3D-8D5739204C04\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"15.6\", \"matchCriteriaId\": \"F5E4F87A-8003-43EB-99F7-35C82AEA4DC0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"15.6\", \"matchCriteriaId\": \"B6FA9FE3-1891-405C-B191-04CAB84ADD46\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"12.0.0\", \"versionEndExcluding\": \"12.5\", \"matchCriteriaId\": \"F86C9DC9-3814-4254-A332-257455B6880A\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5, Safari 15.6. Processing maliciously crafted web content may lead to arbitrary code execution\"}]",
"id": "CVE-2022-32885",
"lastModified": "2024-11-21T07:07:09.610",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\", \"baseScore\": 8.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"REQUIRED\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 5.9}]}",
"published": "2023-05-08T20:15:15.003",
"references": "[{\"url\": \"https://support.apple.com/en-us/HT213341\", \"source\": \"product-security@apple.com\"}, {\"url\": \"https://support.apple.com/en-us/HT213345\", \"source\": \"product-security@apple.com\"}, {\"url\": \"https://support.apple.com/en-us/HT213346\", \"source\": \"product-security@apple.com\"}, {\"url\": \"https://support.apple.com/en-us/HT213341\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://support.apple.com/en-us/HT213345\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://support.apple.com/en-us/HT213346\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "product-security@apple.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-787\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2022-32885\",\"sourceIdentifier\":\"product-security@apple.com\",\"published\":\"2023-05-08T20:15:15.003\",\"lastModified\":\"2025-01-29T17:15:20.403\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5, Safari 15.6. Processing maliciously crafted web content may lead to arbitrary code execution\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":8.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":5.9},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":8.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-787\"}]},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-787\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"15.6\",\"matchCriteriaId\":\"5CB295E5-F980-40EC-AF3D-8D5739204C04\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"15.6\",\"matchCriteriaId\":\"F5E4F87A-8003-43EB-99F7-35C82AEA4DC0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"15.6\",\"matchCriteriaId\":\"B6FA9FE3-1891-405C-B191-04CAB84ADD46\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.0.0\",\"versionEndExcluding\":\"12.5\",\"matchCriteriaId\":\"F86C9DC9-3814-4254-A332-257455B6880A\"}]}]}],\"references\":[{\"url\":\"https://support.apple.com/en-us/HT213341\",\"source\":\"product-security@apple.com\"},{\"url\":\"https://support.apple.com/en-us/HT213345\",\"source\":\"product-security@apple.com\"},{\"url\":\"https://support.apple.com/en-us/HT213346\",\"source\":\"product-security@apple.com\"},{\"url\":\"https://support.apple.com/en-us/HT213341\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://support.apple.com/en-us/HT213345\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://support.apple.com/en-us/HT213346\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://support.apple.com/en-us/HT213345\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://support.apple.com/en-us/HT213346\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://support.apple.com/en-us/HT213341\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-03T07:54:03.009Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 8.8, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"REQUIRED\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2022-32885\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-01-29T16:20:34.535358Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-787\", \"description\": \"CWE-787 Out-of-bounds Write\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-01-29T16:20:27.710Z\"}}], \"cna\": {\"affected\": [{\"vendor\": \"Apple\", \"product\": \"macOS\", \"versions\": [{\"status\": \"affected\", \"version\": \"unspecified\", \"lessThan\": \"12.5\", \"versionType\": \"custom\"}]}, {\"vendor\": \"Apple\", \"product\": \"macOS\", \"versions\": [{\"status\": \"affected\", \"version\": \"unspecified\", \"lessThan\": \"15.6\", \"versionType\": \"custom\"}]}, {\"vendor\": \"Apple\", \"product\": \"macOS\", \"versions\": [{\"status\": \"affected\", \"version\": \"unspecified\", \"lessThan\": \"15.6\", \"versionType\": \"custom\"}]}], \"references\": [{\"url\": \"https://support.apple.com/en-us/HT213345\"}, {\"url\": \"https://support.apple.com/en-us/HT213346\"}, {\"url\": \"https://support.apple.com/en-us/HT213341\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5, Safari 15.6. Processing maliciously crafted web content may lead to arbitrary code execution\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"text\", \"description\": \"Processing maliciously crafted web content may lead to arbitrary code execution\"}]}], \"providerMetadata\": {\"orgId\": \"286789f9-fbc2-4510-9f9a-43facdede74c\", \"shortName\": \"apple\", \"dateUpdated\": \"2023-06-27T00:00:00.000Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2022-32885\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-01-29T16:20:44.138Z\", \"dateReserved\": \"2022-06-09T00:00:00.000Z\", \"assignerOrgId\": \"286789f9-fbc2-4510-9f9a-43facdede74c\", \"datePublished\": \"2023-05-08T00:00:00.000Z\", \"assignerShortName\": \"apple\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
WID-SEC-W-2022-0778
Vulnerability from csaf_certbund - Published: 2022-07-20 22:00 - Updated: 2025-10-20 22:00Summary
Apple macOS: Mehrere Schwachstellen
Severity
Kritisch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Apple macOS ist ein Betriebssystem, das auf FreeBSD und Mach basiert.
Angriff: Ein Angreifer aus dem angrenzenden Netzwerk oder ein entfernter, anonymer, authentisierter oder lokaler Angreifer kann mehrere Schwachstellen in Apple macOS ausnutzen, um vertrauliche Informationen offenzulegen, seine Privilegien zu erweitern, Sicherheitsmaßnahmen zu umgehen, beliebigen Code auszuführen, Dateien zu manipulieren, einen Denial-of-Service-Zustand zu verursachen, Informationen falsch darzustellen und einen Cross-Site-Scripting-Angriff durchzuführen.
Betroffene Betriebssysteme: - MacOS X
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
References
6 references
{
"document": {
"aggregate_severity": {
"text": "kritisch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Apple macOS ist ein Betriebssystem, das auf FreeBSD und Mach basiert.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer aus dem angrenzenden Netzwerk oder ein entfernter, anonymer, authentisierter oder lokaler Angreifer kann mehrere Schwachstellen in Apple macOS ausnutzen, um vertrauliche Informationen offenzulegen, seine Privilegien zu erweitern, Sicherheitsma\u00dfnahmen zu umgehen, beliebigen Code auszuf\u00fchren, Dateien zu manipulieren, einen Denial-of-Service-Zustand zu verursachen, Informationen falsch darzustellen und einen Cross-Site-Scripting-Angriff durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- MacOS X",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2022-0778 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-0778.json"
},
{
"category": "self",
"summary": "WID-SEC-2022-0778 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0778"
},
{
"category": "external",
"summary": "Apple Security Advisroy vom 2022-07-20",
"url": "https://support.apple.com/en-us/HT213343"
},
{
"category": "external",
"summary": "Apple Security Advisroy vom 2022-07-20",
"url": "https://support.apple.com/en-us/HT213344"
},
{
"category": "external",
"summary": "Apple Security Advisroy vom 2022-07-20",
"url": "https://support.apple.com/en-us/HT213345"
},
{
"category": "external",
"summary": "Known Exploited Vulnerabilities Catalog vom 2025-10-20",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"source_lang": "en-US",
"title": "Apple macOS: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-10-20T22:00:00.000+00:00",
"generator": {
"date": "2025-10-21T08:28:29.099+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.4.0"
}
},
"id": "WID-SEC-W-2022-0778",
"initial_release_date": "2022-07-20T22:00:00.000+00:00",
"revision_history": [
{
"date": "2022-07-20T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2022-07-21T22:00:00.000+00:00",
"number": "2",
"summary": "Referenz erg\u00e4nzt"
},
{
"date": "2022-09-20T22:00:00.000+00:00",
"number": "3",
"summary": "CVE Nummern CVE-2022-32861, CVE-2022-32863, CVE-2022-32880 erg\u00e4nzt"
},
{
"date": "2022-10-06T22:00:00.000+00:00",
"number": "4",
"summary": "CVE erg\u00e4nzt"
},
{
"date": "2023-06-21T22:00:00.000+00:00",
"number": "5",
"summary": "CVE-2022-32885, CVE-2022-32948, CVE-2022-42805, CVE-2022-48503, CVE-2022-32860 erg\u00e4nzt"
},
{
"date": "2025-10-20T22:00:00.000+00:00",
"number": "6",
"summary": "Aktive Ausnutzung gemeldet"
}
],
"status": "final",
"version": "6"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "Catalina \u003c2022-005",
"product": {
"name": "Apple macOS Catalina \u003c2022-005",
"product_id": "T023996"
}
},
{
"category": "product_version",
"name": "Catalina 2022-005",
"product": {
"name": "Apple macOS Catalina 2022-005",
"product_id": "T023996-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:apple:mac_os:catalina__2022-005"
}
}
},
{
"category": "product_version_range",
"name": "Big Sur \u003c11.6.8",
"product": {
"name": "Apple macOS Big Sur \u003c11.6.8",
"product_id": "T023997"
}
},
{
"category": "product_version",
"name": "Big Sur 11.6.8",
"product": {
"name": "Apple macOS Big Sur 11.6.8",
"product_id": "T023997-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:apple:mac_os:big_sur__11.6.8"
}
}
},
{
"category": "product_version_range",
"name": "Monterey \u003c12.5",
"product": {
"name": "Apple macOS Monterey \u003c12.5",
"product_id": "T023998"
}
},
{
"category": "product_version",
"name": "Monterey 12.5",
"product": {
"name": "Apple macOS Monterey 12.5",
"product_id": "T023998-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:apple:mac_os:monterey__12.5"
}
}
}
],
"category": "product_name",
"name": "macOS"
}
],
"category": "vendor",
"name": "Apple"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-28544",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2021-28544"
},
{
"cve": "CVE-2021-4136",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2021-4136"
},
{
"cve": "CVE-2021-4166",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2021-4166"
},
{
"cve": "CVE-2021-4173",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2021-4173"
},
{
"cve": "CVE-2021-4187",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2021-4187"
},
{
"cve": "CVE-2021-4192",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2021-4192"
},
{
"cve": "CVE-2021-4193",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2021-4193"
},
{
"cve": "CVE-2021-46059",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2021-46059"
},
{
"cve": "CVE-2022-0128",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-0128"
},
{
"cve": "CVE-2022-0156",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-0156"
},
{
"cve": "CVE-2022-0158",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-0158"
},
{
"cve": "CVE-2022-2294",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-2294"
},
{
"cve": "CVE-2022-24070",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-24070"
},
{
"cve": "CVE-2022-26704",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-26704"
},
{
"cve": "CVE-2022-26981",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-26981"
},
{
"cve": "CVE-2022-29046",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-29046"
},
{
"cve": "CVE-2022-29048",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-29048"
},
{
"cve": "CVE-2022-32781",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32781"
},
{
"cve": "CVE-2022-32785",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32785"
},
{
"cve": "CVE-2022-32786",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32786"
},
{
"cve": "CVE-2022-32787",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32787"
},
{
"cve": "CVE-2022-32789",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32789"
},
{
"cve": "CVE-2022-32792",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32792"
},
{
"cve": "CVE-2022-32793",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32793"
},
{
"cve": "CVE-2022-32796",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32796"
},
{
"cve": "CVE-2022-32797",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32797"
},
{
"cve": "CVE-2022-32798",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32798"
},
{
"cve": "CVE-2022-32799",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32799"
},
{
"cve": "CVE-2022-32800",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32800"
},
{
"cve": "CVE-2022-32801",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32801"
},
{
"cve": "CVE-2022-32805",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32805"
},
{
"cve": "CVE-2022-32807",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32807"
},
{
"cve": "CVE-2022-32810",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32810"
},
{
"cve": "CVE-2022-32811",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32811"
},
{
"cve": "CVE-2022-32812",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32812"
},
{
"cve": "CVE-2022-32813",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32813"
},
{
"cve": "CVE-2022-32814",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32814"
},
{
"cve": "CVE-2022-32815",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32815"
},
{
"cve": "CVE-2022-32816",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32816"
},
{
"cve": "CVE-2022-32817",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32817"
},
{
"cve": "CVE-2022-32818",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32818"
},
{
"cve": "CVE-2022-32819",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32819"
},
{
"cve": "CVE-2022-32820",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32820"
},
{
"cve": "CVE-2022-32821",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32821"
},
{
"cve": "CVE-2022-32823",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32823"
},
{
"cve": "CVE-2022-32825",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32825"
},
{
"cve": "CVE-2022-32826",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32826"
},
{
"cve": "CVE-2022-32828",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32828"
},
{
"cve": "CVE-2022-32829",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32829"
},
{
"cve": "CVE-2022-32831",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32831"
},
{
"cve": "CVE-2022-32832",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32832"
},
{
"cve": "CVE-2022-32834",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32834"
},
{
"cve": "CVE-2022-32837",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32837"
},
{
"cve": "CVE-2022-32838",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32838"
},
{
"cve": "CVE-2022-32839",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32839"
},
{
"cve": "CVE-2022-32840",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32840"
},
{
"cve": "CVE-2022-32841",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32841"
},
{
"cve": "CVE-2022-32842",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32842"
},
{
"cve": "CVE-2022-32843",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32843"
},
{
"cve": "CVE-2022-32845",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32845"
},
{
"cve": "CVE-2022-32847",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32847"
},
{
"cve": "CVE-2022-32848",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32848"
},
{
"cve": "CVE-2022-32849",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32849"
},
{
"cve": "CVE-2022-32851",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32851"
},
{
"cve": "CVE-2022-32852",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32852"
},
{
"cve": "CVE-2022-32853",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32853"
},
{
"cve": "CVE-2022-32857",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32857"
},
{
"cve": "CVE-2022-32860",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32860"
},
{
"cve": "CVE-2022-32861",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32861"
},
{
"cve": "CVE-2022-32863",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32863"
},
{
"cve": "CVE-2022-32880",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32880"
},
{
"cve": "CVE-2022-32885",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32885"
},
{
"cve": "CVE-2022-32910",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32910"
},
{
"cve": "CVE-2022-32948",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32948"
},
{
"cve": "CVE-2022-42805",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-42805"
},
{
"cve": "CVE-2022-48503",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-48503"
}
]
}
WID-SEC-W-2022-0782
Vulnerability from csaf_certbund - Published: 2022-07-20 22:00 - Updated: 2025-10-20 22:00Summary
Apple iOS: Mehrere Schwachstellen
Severity
Kritisch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Das Apple iOS (vormals iPhone OS) ist das Betriebssystem für das von Apple entwickelte Smartphone iPhone, iPad und iPod Touch.
Das Apple iPadOS ist das Betriebssystem für das von Apple entwickelte iPad.
Angriff: Ein Angreifer aus dem angrenzenden Netzwerk oder ein entfernter anonymer, lokaler oder physischer Angreifer kann mehrere Schwachstellen in Apple iOS und Apple iPadOS ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand auszulösen, seine Privilegien zu erweitern und Informationen falsch darzustellen.
Betroffene Betriebssysteme: - iPhoneOS
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple iPadOS <15.6
Apple / iPadOS
|
<15.6 | ||
|
Apple iOS <15.6
Apple / iOS
|
<15.6 |
References
4 references
{
"document": {
"aggregate_severity": {
"text": "kritisch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Das Apple iOS (vormals iPhone OS) ist das Betriebssystem f\u00fcr das von Apple entwickelte Smartphone iPhone, iPad und iPod Touch.\r\nDas Apple iPadOS ist das Betriebssystem f\u00fcr das von Apple entwickelte iPad.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer aus dem angrenzenden Netzwerk oder ein entfernter anonymer, lokaler oder physischer Angreifer kann mehrere Schwachstellen in Apple iOS und Apple iPadOS ausnutzen, um beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand auszul\u00f6sen, seine Privilegien zu erweitern und Informationen falsch darzustellen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- iPhoneOS",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2022-0782 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-0782.json"
},
{
"category": "self",
"summary": "WID-SEC-2022-0782 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0782"
},
{
"category": "external",
"summary": "Apple Security Advisory vom 2022-07-20",
"url": "https://support.apple.com/HT213346"
},
{
"category": "external",
"summary": "CISA Known Exploited Vulnerabilities Catalog vom 2025-10-20",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"source_lang": "en-US",
"title": "Apple iOS: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-10-20T22:00:00.000+00:00",
"generator": {
"date": "2025-10-21T08:23:25.439+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.4.0"
}
},
"id": "WID-SEC-W-2022-0782",
"initial_release_date": "2022-07-20T22:00:00.000+00:00",
"revision_history": [
{
"date": "2022-07-20T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2022-07-21T22:00:00.000+00:00",
"number": "2",
"summary": "Referenz aufgenommen"
},
{
"date": "2023-06-21T22:00:00.000+00:00",
"number": "3",
"summary": "CVE-2022-32860, CVE-2022-32885, CVE-2022-32948, CVE-2022-42805, CVE-2022-48503 erg\u00e4nzt"
},
{
"date": "2025-10-20T22:00:00.000+00:00",
"number": "4",
"summary": "Aktive Ausnutzung gemeldet"
}
],
"status": "final",
"version": "4"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c15.6",
"product": {
"name": "Apple iOS \u003c15.6",
"product_id": "T024029"
}
},
{
"category": "product_version",
"name": "15.6",
"product": {
"name": "Apple iOS 15.6",
"product_id": "T024029-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:apple:iphone_os:15.6"
}
}
}
],
"category": "product_name",
"name": "iOS"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c15.6",
"product": {
"name": "Apple iPadOS \u003c15.6",
"product_id": "T024030"
}
},
{
"category": "product_version",
"name": "15.6",
"product": {
"name": "Apple iPadOS 15.6",
"product_id": "T024030-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:apple:ipados:15.6"
}
}
}
],
"category": "product_name",
"name": "iPadOS"
}
],
"category": "vendor",
"name": "Apple"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-2294",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-2294"
},
{
"cve": "CVE-2022-26768",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-26768"
},
{
"cve": "CVE-2022-26981",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-26981"
},
{
"cve": "CVE-2022-32784",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32784"
},
{
"cve": "CVE-2022-32785",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32785"
},
{
"cve": "CVE-2022-32787",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32787"
},
{
"cve": "CVE-2022-32788",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32788"
},
{
"cve": "CVE-2022-32792",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32792"
},
{
"cve": "CVE-2022-32793",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32793"
},
{
"cve": "CVE-2022-32802",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32802"
},
{
"cve": "CVE-2022-32810",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32810"
},
{
"cve": "CVE-2022-32813",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32813"
},
{
"cve": "CVE-2022-32814",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32814"
},
{
"cve": "CVE-2022-32815",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32815"
},
{
"cve": "CVE-2022-32816",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32816"
},
{
"cve": "CVE-2022-32817",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32817"
},
{
"cve": "CVE-2022-32819",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32819"
},
{
"cve": "CVE-2022-32820",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32820"
},
{
"cve": "CVE-2022-32821",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32821"
},
{
"cve": "CVE-2022-32823",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32823"
},
{
"cve": "CVE-2022-32824",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32824"
},
{
"cve": "CVE-2022-32825",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32825"
},
{
"cve": "CVE-2022-32826",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32826"
},
{
"cve": "CVE-2022-32828",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32828"
},
{
"cve": "CVE-2022-32829",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32829"
},
{
"cve": "CVE-2022-32830",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32830"
},
{
"cve": "CVE-2022-32832",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32832"
},
{
"cve": "CVE-2022-32837",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32837"
},
{
"cve": "CVE-2022-32838",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32838"
},
{
"cve": "CVE-2022-32839",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32839"
},
{
"cve": "CVE-2022-32840",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32840"
},
{
"cve": "CVE-2022-32841",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32841"
},
{
"cve": "CVE-2022-32844",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32844"
},
{
"cve": "CVE-2022-32845",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32845"
},
{
"cve": "CVE-2022-32847",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32847"
},
{
"cve": "CVE-2022-32849",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32849"
},
{
"cve": "CVE-2022-32855",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32855"
},
{
"cve": "CVE-2022-32857",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32857"
},
{
"cve": "CVE-2022-32860",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32860"
},
{
"cve": "CVE-2022-32885",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32885"
},
{
"cve": "CVE-2022-32948",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32948"
},
{
"cve": "CVE-2022-42805",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-42805"
},
{
"cve": "CVE-2022-48503",
"product_status": {
"known_affected": [
"T024030",
"T024029"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-48503"
}
]
}
WID-SEC-W-2024-3286
Vulnerability from csaf_certbund - Published: 2024-10-27 23:00 - Updated: 2024-11-19 23:00Summary
Red Hat Enterprise Linux: Mehrere Schwachstellen
Severity
Kritisch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Red Hat Enterprise Linux (RHEL) ist eine populäre Linux-Distribution.
Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat Enterprise Linux ausnutzen, um beliebigen Programmcode auszuführen oder einen Denial-of-Service-Zustand zu erzeugen.
Betroffene Betriebssysteme: - Linux
Es bestehen mehrere Schwachstellen in Red Hat Enterprise Linux. Diese Fehler existieren in den WebKit- und ANGLE-Komponenten aufgrund verschiedener sicherheitsrelevanter Probleme wie einer unzureichenden Speicherbehandlung, einer unzureichenden Überprüfung der Grenzen oder einer Speicherbeschädigung und mehr. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen oder einen Denial-of-Service-Zustand zu erzeugen.
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
RESF Rocky Linux 8
RESF / Rocky Linux
|
cpe:/o:resf:rocky_linux:8
|
8 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat Enterprise Linux 9.2
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9.2
|
9.2 | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— |
Es bestehen mehrere Schwachstellen in Red Hat Enterprise Linux. Diese Fehler existieren in den WebKit- und ANGLE-Komponenten aufgrund verschiedener sicherheitsrelevanter Probleme wie einer unzureichenden Speicherbehandlung, einer unzureichenden Überprüfung der Grenzen oder einer Speicherbeschädigung und mehr. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen oder einen Denial-of-Service-Zustand zu erzeugen.
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
RESF Rocky Linux 8
RESF / Rocky Linux
|
cpe:/o:resf:rocky_linux:8
|
8 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat Enterprise Linux 9.2
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9.2
|
9.2 | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— |
Es bestehen mehrere Schwachstellen in Red Hat Enterprise Linux. Diese Fehler existieren in den WebKit- und ANGLE-Komponenten aufgrund verschiedener sicherheitsrelevanter Probleme wie einer unzureichenden Speicherbehandlung, einer unzureichenden Überprüfung der Grenzen oder einer Speicherbeschädigung und mehr. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen oder einen Denial-of-Service-Zustand zu erzeugen.
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
RESF Rocky Linux 8
RESF / Rocky Linux
|
cpe:/o:resf:rocky_linux:8
|
8 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat Enterprise Linux 9.2
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9.2
|
9.2 | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— |
Es bestehen mehrere Schwachstellen in Red Hat Enterprise Linux. Diese Fehler existieren in den WebKit- und ANGLE-Komponenten aufgrund verschiedener sicherheitsrelevanter Probleme wie einer unzureichenden Speicherbehandlung, einer unzureichenden Überprüfung der Grenzen oder einer Speicherbeschädigung und mehr. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen oder einen Denial-of-Service-Zustand zu erzeugen.
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
RESF Rocky Linux 8
RESF / Rocky Linux
|
cpe:/o:resf:rocky_linux:8
|
8 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat Enterprise Linux 9.2
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9.2
|
9.2 | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— |
Es bestehen mehrere Schwachstellen in Red Hat Enterprise Linux. Diese Fehler existieren in den WebKit- und ANGLE-Komponenten aufgrund verschiedener sicherheitsrelevanter Probleme wie einer unzureichenden Speicherbehandlung, einer unzureichenden Überprüfung der Grenzen oder einer Speicherbeschädigung und mehr. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen oder einen Denial-of-Service-Zustand zu erzeugen.
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
RESF Rocky Linux 8
RESF / Rocky Linux
|
cpe:/o:resf:rocky_linux:8
|
8 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat Enterprise Linux 9.2
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9.2
|
9.2 | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— |
Es bestehen mehrere Schwachstellen in Red Hat Enterprise Linux. Diese Fehler existieren in den WebKit- und ANGLE-Komponenten aufgrund verschiedener sicherheitsrelevanter Probleme wie einer unzureichenden Speicherbehandlung, einer unzureichenden Überprüfung der Grenzen oder einer Speicherbeschädigung und mehr. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen oder einen Denial-of-Service-Zustand zu erzeugen.
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
RESF Rocky Linux 8
RESF / Rocky Linux
|
cpe:/o:resf:rocky_linux:8
|
8 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat Enterprise Linux 9.2
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9.2
|
9.2 | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— |
Es bestehen mehrere Schwachstellen in Red Hat Enterprise Linux. Diese Fehler existieren in den WebKit- und ANGLE-Komponenten aufgrund verschiedener sicherheitsrelevanter Probleme wie einer unzureichenden Speicherbehandlung, einer unzureichenden Überprüfung der Grenzen oder einer Speicherbeschädigung und mehr. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen oder einen Denial-of-Service-Zustand zu erzeugen.
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
RESF Rocky Linux 8
RESF / Rocky Linux
|
cpe:/o:resf:rocky_linux:8
|
8 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat Enterprise Linux 9.2
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9.2
|
9.2 | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— |
Es bestehen mehrere Schwachstellen in Red Hat Enterprise Linux. Diese Fehler existieren in den WebKit- und ANGLE-Komponenten aufgrund verschiedener sicherheitsrelevanter Probleme wie einer unzureichenden Speicherbehandlung, einer unzureichenden Überprüfung der Grenzen oder einer Speicherbeschädigung und mehr. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen oder einen Denial-of-Service-Zustand zu erzeugen.
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
RESF Rocky Linux 8
RESF / Rocky Linux
|
cpe:/o:resf:rocky_linux:8
|
8 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat Enterprise Linux 9.2
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9.2
|
9.2 | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— |
Es bestehen mehrere Schwachstellen in Red Hat Enterprise Linux. Diese Fehler existieren in den WebKit- und ANGLE-Komponenten aufgrund verschiedener sicherheitsrelevanter Probleme wie einer unzureichenden Speicherbehandlung, einer unzureichenden Überprüfung der Grenzen oder einer Speicherbeschädigung und mehr. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen oder einen Denial-of-Service-Zustand zu erzeugen.
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
RESF Rocky Linux 8
RESF / Rocky Linux
|
cpe:/o:resf:rocky_linux:8
|
8 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat Enterprise Linux 9.2
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9.2
|
9.2 | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— |
Es bestehen mehrere Schwachstellen in Red Hat Enterprise Linux. Diese Fehler existieren in den WebKit- und ANGLE-Komponenten aufgrund verschiedener sicherheitsrelevanter Probleme wie einer unzureichenden Speicherbehandlung, einer unzureichenden Überprüfung der Grenzen oder einer Speicherbeschädigung und mehr. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen oder einen Denial-of-Service-Zustand zu erzeugen.
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
RESF Rocky Linux 8
RESF / Rocky Linux
|
cpe:/o:resf:rocky_linux:8
|
8 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat Enterprise Linux 9.2
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9.2
|
9.2 | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— |
Es bestehen mehrere Schwachstellen in Red Hat Enterprise Linux. Diese Fehler existieren in den WebKit- und ANGLE-Komponenten aufgrund verschiedener sicherheitsrelevanter Probleme wie einer unzureichenden Speicherbehandlung, einer unzureichenden Überprüfung der Grenzen oder einer Speicherbeschädigung und mehr. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen oder einen Denial-of-Service-Zustand zu erzeugen.
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
RESF Rocky Linux 8
RESF / Rocky Linux
|
cpe:/o:resf:rocky_linux:8
|
8 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat Enterprise Linux 9.2
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9.2
|
9.2 | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— |
Es bestehen mehrere Schwachstellen in Red Hat Enterprise Linux. Diese Fehler existieren in den WebKit- und ANGLE-Komponenten aufgrund verschiedener sicherheitsrelevanter Probleme wie einer unzureichenden Speicherbehandlung, einer unzureichenden Überprüfung der Grenzen oder einer Speicherbeschädigung und mehr. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen oder einen Denial-of-Service-Zustand zu erzeugen.
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
RESF Rocky Linux 8
RESF / Rocky Linux
|
cpe:/o:resf:rocky_linux:8
|
8 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat Enterprise Linux 9.2
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9.2
|
9.2 | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— |
References
10 references
{
"document": {
"aggregate_severity": {
"text": "kritisch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Red Hat Enterprise Linux (RHEL) ist eine popul\u00e4re Linux-Distribution.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat Enterprise Linux ausnutzen, um beliebigen Programmcode auszuf\u00fchren oder einen Denial-of-Service-Zustand zu erzeugen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-3286 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3286.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-3286 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3286"
},
{
"category": "external",
"summary": "Red Hat Security Advisory vom 2024-10-27",
"url": "https://access.redhat.com/errata/RHSA-2024:8492"
},
{
"category": "external",
"summary": "Red Hat Security Advisory vom 2024-10-27",
"url": "https://access.redhat.com/errata/RHSA-2024:8496"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:9646 vom 2024-11-14",
"url": "https://access.redhat.com/errata/RHSA-2024:9646"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:9653 vom 2024-11-14",
"url": "https://access.redhat.com/errata/RHSA-2024:9653"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:9680 vom 2024-11-14",
"url": "https://access.redhat.com/errata/RHSA-2024:9680"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:9679 vom 2024-11-14",
"url": "https://access.redhat.com/errata/RHSA-2024:9679"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-9636 vom 2024-11-18",
"url": "http://linux.oracle.com/errata/ELSA-2024-9636.html"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2024:9636 vom 2024-11-19",
"url": "https://errata.build.resf.org/RLSA-2024:9636"
}
],
"source_lang": "en-US",
"title": "Red Hat Enterprise Linux: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2024-11-19T23:00:00.000+00:00",
"generator": {
"date": "2024-11-20T09:18:39.412+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.8"
}
},
"id": "WID-SEC-W-2024-3286",
"initial_release_date": "2024-10-27T23:00:00.000+00:00",
"revision_history": [
{
"date": "2024-10-27T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-11-14T23:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-17T23:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-11-19T23:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Rocky Enterprise Software Foundation aufgenommen"
}
],
"status": "final",
"version": "4"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T004914",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "8",
"product": {
"name": "RESF Rocky Linux 8",
"product_id": "T039270",
"product_identification_helper": {
"cpe": "cpe:/o:resf:rocky_linux:8"
}
}
}
],
"category": "product_name",
"name": "Rocky Linux"
}
],
"category": "vendor",
"name": "RESF"
},
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
},
{
"category": "product_version",
"name": "9",
"product": {
"name": "Red Hat Enterprise Linux 9",
"product_id": "T035974",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:9"
}
}
},
{
"category": "product_version",
"name": "9.2",
"product": {
"name": "Red Hat Enterprise Linux 9.2",
"product_id": "T038627",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:9.2"
}
}
}
],
"category": "product_name",
"name": "Enterprise Linux"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-32885",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Red Hat Enterprise Linux. Diese Fehler existieren in den WebKit- und ANGLE-Komponenten aufgrund verschiedener sicherheitsrelevanter Probleme wie einer unzureichenden Speicherbehandlung, einer unzureichenden \u00dcberpr\u00fcfung der Grenzen oder einer Speicherbesch\u00e4digung und mehr. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren oder einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T035974",
"T039270",
"67646",
"T038627",
"T004914"
]
},
"release_date": "2024-10-27T23:00:00.000+00:00",
"title": "CVE-2022-32885"
},
{
"cve": "CVE-2023-40397",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Red Hat Enterprise Linux. Diese Fehler existieren in den WebKit- und ANGLE-Komponenten aufgrund verschiedener sicherheitsrelevanter Probleme wie einer unzureichenden Speicherbehandlung, einer unzureichenden \u00dcberpr\u00fcfung der Grenzen oder einer Speicherbesch\u00e4digung und mehr. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren oder einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T035974",
"T039270",
"67646",
"T038627",
"T004914"
]
},
"release_date": "2024-10-27T23:00:00.000+00:00",
"title": "CVE-2023-40397"
},
{
"cve": "CVE-2023-42852",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Red Hat Enterprise Linux. Diese Fehler existieren in den WebKit- und ANGLE-Komponenten aufgrund verschiedener sicherheitsrelevanter Probleme wie einer unzureichenden Speicherbehandlung, einer unzureichenden \u00dcberpr\u00fcfung der Grenzen oder einer Speicherbesch\u00e4digung und mehr. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren oder einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T035974",
"T039270",
"67646",
"T038627",
"T004914"
]
},
"release_date": "2024-10-27T23:00:00.000+00:00",
"title": "CVE-2023-42852"
},
{
"cve": "CVE-2023-42917",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Red Hat Enterprise Linux. Diese Fehler existieren in den WebKit- und ANGLE-Komponenten aufgrund verschiedener sicherheitsrelevanter Probleme wie einer unzureichenden Speicherbehandlung, einer unzureichenden \u00dcberpr\u00fcfung der Grenzen oder einer Speicherbesch\u00e4digung und mehr. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren oder einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T035974",
"T039270",
"67646",
"T038627",
"T004914"
]
},
"release_date": "2024-10-27T23:00:00.000+00:00",
"title": "CVE-2023-42917"
},
{
"cve": "CVE-2024-27820",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Red Hat Enterprise Linux. Diese Fehler existieren in den WebKit- und ANGLE-Komponenten aufgrund verschiedener sicherheitsrelevanter Probleme wie einer unzureichenden Speicherbehandlung, einer unzureichenden \u00dcberpr\u00fcfung der Grenzen oder einer Speicherbesch\u00e4digung und mehr. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren oder einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T035974",
"T039270",
"67646",
"T038627",
"T004914"
]
},
"release_date": "2024-10-27T23:00:00.000+00:00",
"title": "CVE-2024-27820"
},
{
"cve": "CVE-2024-27851",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Red Hat Enterprise Linux. Diese Fehler existieren in den WebKit- und ANGLE-Komponenten aufgrund verschiedener sicherheitsrelevanter Probleme wie einer unzureichenden Speicherbehandlung, einer unzureichenden \u00dcberpr\u00fcfung der Grenzen oder einer Speicherbesch\u00e4digung und mehr. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren oder einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T035974",
"T039270",
"67646",
"T038627",
"T004914"
]
},
"release_date": "2024-10-27T23:00:00.000+00:00",
"title": "CVE-2024-27851"
},
{
"cve": "CVE-2024-40776",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Red Hat Enterprise Linux. Diese Fehler existieren in den WebKit- und ANGLE-Komponenten aufgrund verschiedener sicherheitsrelevanter Probleme wie einer unzureichenden Speicherbehandlung, einer unzureichenden \u00dcberpr\u00fcfung der Grenzen oder einer Speicherbesch\u00e4digung und mehr. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren oder einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T035974",
"T039270",
"67646",
"T038627",
"T004914"
]
},
"release_date": "2024-10-27T23:00:00.000+00:00",
"title": "CVE-2024-40776"
},
{
"cve": "CVE-2024-40779",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Red Hat Enterprise Linux. Diese Fehler existieren in den WebKit- und ANGLE-Komponenten aufgrund verschiedener sicherheitsrelevanter Probleme wie einer unzureichenden Speicherbehandlung, einer unzureichenden \u00dcberpr\u00fcfung der Grenzen oder einer Speicherbesch\u00e4digung und mehr. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren oder einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T035974",
"T039270",
"67646",
"T038627",
"T004914"
]
},
"release_date": "2024-10-27T23:00:00.000+00:00",
"title": "CVE-2024-40779"
},
{
"cve": "CVE-2024-40780",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Red Hat Enterprise Linux. Diese Fehler existieren in den WebKit- und ANGLE-Komponenten aufgrund verschiedener sicherheitsrelevanter Probleme wie einer unzureichenden Speicherbehandlung, einer unzureichenden \u00dcberpr\u00fcfung der Grenzen oder einer Speicherbesch\u00e4digung und mehr. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren oder einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T035974",
"T039270",
"67646",
"T038627",
"T004914"
]
},
"release_date": "2024-10-27T23:00:00.000+00:00",
"title": "CVE-2024-40780"
},
{
"cve": "CVE-2024-40782",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Red Hat Enterprise Linux. Diese Fehler existieren in den WebKit- und ANGLE-Komponenten aufgrund verschiedener sicherheitsrelevanter Probleme wie einer unzureichenden Speicherbehandlung, einer unzureichenden \u00dcberpr\u00fcfung der Grenzen oder einer Speicherbesch\u00e4digung und mehr. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren oder einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T035974",
"T039270",
"67646",
"T038627",
"T004914"
]
},
"release_date": "2024-10-27T23:00:00.000+00:00",
"title": "CVE-2024-40782"
},
{
"cve": "CVE-2024-40789",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Red Hat Enterprise Linux. Diese Fehler existieren in den WebKit- und ANGLE-Komponenten aufgrund verschiedener sicherheitsrelevanter Probleme wie einer unzureichenden Speicherbehandlung, einer unzureichenden \u00dcberpr\u00fcfung der Grenzen oder einer Speicherbesch\u00e4digung und mehr. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren oder einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T035974",
"T039270",
"67646",
"T038627",
"T004914"
]
},
"release_date": "2024-10-27T23:00:00.000+00:00",
"title": "CVE-2024-40789"
},
{
"cve": "CVE-2024-4558",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Red Hat Enterprise Linux. Diese Fehler existieren in den WebKit- und ANGLE-Komponenten aufgrund verschiedener sicherheitsrelevanter Probleme wie einer unzureichenden Speicherbehandlung, einer unzureichenden \u00dcberpr\u00fcfung der Grenzen oder einer Speicherbesch\u00e4digung und mehr. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren oder einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T035974",
"T039270",
"67646",
"T038627",
"T004914"
]
},
"release_date": "2024-10-27T23:00:00.000+00:00",
"title": "CVE-2024-4558"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…