The version of Apple iOS running on the mobile device is prior to 15.4. It is, therefore, affected by multiple vulnerabilities, including the following:
A memory corruption issue in the Accelerate Framework that can lead to unexpected application termination or arbitrary code execution when opening a maliciously crafted PDF. (CVE-2022-22633)
A buffer overflow condition in AVEVideoEncoder that allows an application to execute arbitrary code with kernel privileges. (CVE-2022-22634)
An out-of-bounds write issue in AVEVideoEncoder that allows an application to execute arbitrary code with kernel privileges. (CVE-2022-22636)
Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.
Binary data apple_ios_154_check.nbin
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-36976
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22596
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22598
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22599
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22600
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22609
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22610
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22611
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22612
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22613
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22614
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22615
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22618
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22621
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22622
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22624
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22628
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22629
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22632
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22633
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22634
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22635
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22636
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22637
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22638
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22639
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22640
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22641
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22642
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22643
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22652
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22653
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22659
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22662
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22666
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22667
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22668
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22670
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22671
support.apple.com/en-gb/HT213182