Apple Products Multiple Vulnerabilities
Last Update Date:
26 Jan 2023
Release Date:
14 Dec 2022
8142
Views
RISK: Extremely High Risk
TYPE: Operating Systems - Mobile & Apps
Multiple vulnerabilities were identified in Apple Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege, remote code execution, sensitive information disclosure and security restriction bypass on the targeted system.
Note:
CVE-2022-42856 is being exploited in the wild.
[Updated 26-January-2023] CVE-2022-42856 is being exploited in the wild. Risk level has been escalated to Extremely High Risk.
Impact
- Denial of Service
- Elevation of Privilege
- Remote Code Execution
- Information Disclosure
- Security Restriction Bypass
System / Technologies affected
- Version prior to iCloud for Windows 14.1
- Version prior to iOS 16.2 and iPadOS 16.2
- Version prior to iOS 16.1.2
- Version prior to iOS 15.7.2 and iPadOS 15.7.2
- Version prior to macOS Ventura 13.1
- Version prior to macOS Monterey 12.6.2
- Version prior to macOS Big Sur 11.7.2
- Version prior to Safari 16.2
- Version prior to tvOS 16.2
- Version prior to watchOS 9.2
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- iCloud for Windows 14.1
- iOS 16.2 and iPadOS 16.2
- iOS 16.1.2
- iOS 15.7.2 and iPadOS 15.7.2
- macOS Ventura 13.1
- macOS Monterey 12.6.2
- macOS Big Sur 11.7.2
- Safari 16.2
- tvOS 16.2
- watchOS 9.2
Vulnerability Identifier
- CVE-2022-24836
- CVE-2022-29181
- CVE-2022-32942
- CVE-2022-32943
- CVE-2022-40303
- CVE-2022-40304
- CVE-2022-42821
- CVE-2022-42837
- CVE-2022-42840
- CVE-2022-42841
- CVE-2022-42842
- CVE-2022-42843
- CVE-2022-42844
- CVE-2022-42845
- CVE-2022-42846
- CVE-2022-42847
- CVE-2022-42848
- CVE-2022-42849
- CVE-2022-42850
- CVE-2022-42851
- CVE-2022-42852
- CVE-2022-42853
- CVE-2022-42854
- CVE-2022-42855
- CVE-2022-42856
- CVE-2022-42859
- CVE-2022-42861
- CVE-2022-42862
- CVE-2022-42863
- CVE-2022-42864
- CVE-2022-42865
- CVE-2022-42866
- CVE-2022-42867
- CVE-2022-46689
- CVE-2022-46690
- CVE-2022-46691
- CVE-2022-46692
- CVE-2022-46693
- CVE-2022-46694
- CVE-2022-46695
- CVE-2022-46696
- CVE-2022-46697
- CVE-2022-46698
- CVE-2022-46699
- CVE-2022-46700
- CVE-2022-46701
- CVE-2022-46702
Source
Related Link
- https://support.apple.com/en-us/HT213530
- https://support.apple.com/en-us/HT213531
- https://support.apple.com/en-us/HT213532
- https://support.apple.com/en-us/HT213533
- https://support.apple.com/en-us/HT213534
- https://support.apple.com/en-us/HT213535
- https://support.apple.com/en-us/HT213536
- https://support.apple.com/en-us/HT213537
- https://support.apple.com/en-us/HT213538
Related Tags
Share with