Vulnerabilities > CVE-2022-22638 - NULL Pointer Dereference vulnerability in Apple products
Attack vector
NETWORK Attack complexity
LOW Privileges required
LOW Confidentiality impact
NONE Integrity impact
NONE Availability impact
HIGH Summary
A null pointer dereference was addressed with improved validation. This issue is fixed in tvOS 15.4, iOS 15.4 and iPadOS 15.4, macOS Big Sur 11.6.5, Security Update 2022-003 Catalina, watchOS 8.5, macOS Monterey 12.3. An attacker in a privileged position may be able to perform a denial of service attack.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
References
- https://support.apple.com/en-us/HT213182
- https://support.apple.com/en-us/HT213182
- https://support.apple.com/en-us/HT213183
- https://support.apple.com/en-us/HT213183
- https://support.apple.com/en-us/HT213184
- https://support.apple.com/en-us/HT213184
- https://support.apple.com/en-us/HT213185
- https://support.apple.com/en-us/HT213185
- https://support.apple.com/en-us/HT213186
- https://support.apple.com/en-us/HT213186
- https://support.apple.com/en-us/HT213193
- https://support.apple.com/en-us/HT213193