9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
8.7 High
AI Score
Confidence
High
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.004 Low
EPSS
Percentile
73.7%
This document describes the security content of tvOS 16.
For our customersβ protection, Apple doesnβt disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page.
Apple security documents reference vulnerabilities by CVE-ID when possible.
For more information about security, see the Apple Product Security page.
Released September 12, 2022
Accelerate Framework
Available for: Apple TV 4K, Apple TV 4K (2nd generation), and Apple TV HD
Impact: Processing a maliciously crafted image may lead to arbitrary code execution
Description: A memory consumption issue was addressed with improved memory handling.
CVE-2022-42795: ryuzaki
AppleAVD
Available for: Apple TV 4K, Apple TV 4K (2nd generation), and Apple TV HD
Impact: An app may be able to execute arbitrary code with kernel privileges
Description: This issue was addressed with improved checks.
CVE-2022-32907: Natalie Silvanovich of Google Project Zero, Antonio Zekic (@antoniozekic) and John Aakerblom (@jaakerblom), ABC Research s.r.o, Yinyi Wu, Tommaso Bianco (@cutesmilee__)
GPU Drivers
Available for: Apple TV 4K, Apple TV 4K (2nd generation), and Apple TV HD
Impact: An app may be able to execute arbitrary code with kernel privileges
Description: A use after free issue was addressed with improved memory management.
CVE-2022-32903: an anonymous researcher
ImageIO
Available for: Apple TV 4K, Apple TV 4K (2nd generation), and Apple TV HD
Impact: Processing an image may lead to a denial-of-service
Description: A denial-of-service issue was addressed with improved validation.
CVE-2022-1622
Image Processing
Available for: Apple TV 4K, Apple TV 4K (2nd generation), and Apple TV HD
Impact: A sandboxed app may be able to determine which app is currently using the camera
Description: The issue was addressed with additional restrictions on the observability of app states.
CVE-2022-32913: YiΔit Can YILMAZ (@yilmazcanyigit)
Image Processing
Available for: Apple TV 4K, Apple TV 4K (2nd generation), and Apple TV HD
Impact: An app may be able to execute arbitrary code with kernel privileges
Description: This issue was addressed with improved checks.
CVE-2022-32949: Tingting Yin of Tsinghua University
Kernel
Available for: Apple TV 4K, Apple TV 4K (2nd generation), and Apple TV HD
Impact: An app may be able to disclose kernel memory
Description: The issue was addressed with improved memory handling.
CVE-2022-32864: Linus Henze of Pinauten GmbH (pinauten.de)
Kernel
Available for: Apple TV 4K, Apple TV 4K (2nd generation), and Apple TV HD
Impact: An app may be able to execute arbitrary code with kernel privileges
Description: The issue was addressed with improved memory handling.
CVE-2022-32866: Linus Henze of Pinauten GmbH (pinauten.de)
CVE-2022-32911: Zweig of Kunlun Lab
Kernel
Available for: Apple TV 4K, Apple TV 4K (2nd generation), and Apple TV HD
Impact: An app may be able to execute arbitrary code with kernel privileges
Description: A use after free issue was addressed with improved memory management.
CVE-2022-32914: Zweig of Kunlun Lab
MediaLibrary
Available for: Apple TV 4K, Apple TV 4K (2nd generation), and Apple TV HD
Impact: A user may be able to elevate privileges
Description: A memory corruption issue was addressed with improved input validation.
CVE-2022-32908: an anonymous researcher
Notifications
Available for: Apple TV 4K, Apple TV 4K (2nd generation), and Apple TV HD
Impact: A user with physical access to a device may be able to access contacts from the lock screen
Description: A logic issue was addressed with improved state management.
CVE-2022-32879: Ubeydullah SΓΌmer
Sandbox
Available for: Apple TV 4K, Apple TV 4K (2nd generation), and Apple TV HD
Impact: An app may be able to modify protected parts of the file system
Description: A logic issue was addressed with improved restrictions.
CVE-2022-32881: Csaba Fitzl (@theevilbit) of Offensive Security
SQLite
Available for: Apple TV 4K, Apple TV 4K (2nd generation), and Apple TV HD
Impact: A remote user may be able to cause a denial-of-service
Description: This issue was addressed with improved checks.
CVE-2021-36690
WebKit
Available for: Apple TV 4K, Apple TV 4K (2nd generation), and Apple TV HD
Impact: Processing maliciously crafted web content may lead to arbitrary code execution
Description: A buffer overflow issue was addressed with improved memory handling.
WebKit Bugzilla: 241969
CVE-2022-32886: P1umer(@p1umer), afang(@afang5472), xmzyshypnc(@xmzyshypnc1)
WebKit
Available for: Apple TV 4K, Apple TV 4K (2nd generation), and Apple TV HD
Impact: Processing maliciously crafted web content may lead to arbitrary code execution
Description: An out-of-bounds write issue was addressed with improved bounds checking.
WebKit Bugzilla: 242047
CVE-2022-32888: P1umer (@p1umer)
WebKit
Available for: Apple TV 4K, Apple TV 4K (2nd generation), and Apple TV HD
Impact: Processing maliciously crafted web content may lead to arbitrary code execution
Description: An out-of-bounds read was addressed with improved bounds checking.
WebKit Bugzilla: 242762
CVE-2022-32912: Jeonghoon Shin (@singi21a) at Theori working with Trend Micro Zero Day Initiative
WebKit
Available for: Apple TV 4K, Apple TV 4K (2nd generation), and Apple TV HD
Impact: Visiting a website that frames malicious content may lead to UI spoofing
Description: The issue was addressed with improved UI handling.
WebKit Bugzilla: 242762
CVE-2022-32891: @real_as3617, an anonymous researcher
Wi-Fi
Available for: Apple TV 4K, Apple TV 4K (2nd generation), and Apple TV HD
Impact: An app may be able to execute arbitrary code with kernel privileges
Description: A memory corruption issue was addressed with improved state management.
CVE-2022-46709: Wang Yu of Cyberserval
Entry added June 7, 2023
Wi-Fi
Available for: Apple TV 4K, Apple TV 4K (2nd generation), and Apple TV HD
Impact: An app may be able to cause unexpected system termination or write kernel memory
Description: An out-of-bounds write issue was addressed with improved bounds checking.
CVE-2022-32925: Wang Yu of Cyberserval
AppleCredentialManager
We would like to acknowledge @jonathandata1 for their assistance.
Identity Services
We would like to acknowledge Joshua Jones for their assistance.
Kernel
We would like to acknowledge an anonymous researcher for their assistance.
Sandbox
We would like to acknowledge Csaba Fitzl (@theevilbit) of Offensive Security for their assistance.
UIKit
We would like to acknowledge Aleczander Ewing for their assistance.
WebKit
We would like to acknowledge an anonymous researcher for their assistance.
Information about products not manufactured by Apple, or independent websites not controlled or tested by Apple, is provided without recommendation or endorsement. Apple assumes no responsibility with regard to the selection, performance, or use of third-party websites or products. Apple makes no representations regarding third-party website accuracy or reliability. Contact the vendor for additional information.
Published Date: October 31, 2023
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
8.7 High
AI Score
Confidence
High
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.004 Low
EPSS
Percentile
73.7%