Vulnerabilities > CVE-2022-22638 - NULL Pointer Dereference vulnerability in Apple products

047910
CVSS 6.5 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
apple
CWE-476
NVD
Published: 2022-03-18
Updated: 2022-11-02

Summary

A null pointer dereference was addressed with improved validation. This issue is fixed in tvOS 15.4, iOS 15.4 and iPadOS 15.4, macOS Big Sur 11.6.5, Security Update 2022-003 Catalina, watchOS 8.5, macOS Monterey 12.3. An attacker in a privileged position may be able to perform a denial of service attack.

Vulnerable Configurations

Part Description Count
OS
Apple
445

Common Weakness Enumeration (CWE)

References