CVE-2022-32827

CVE-2022-32827 is a memory corruption vulnerability in AppleAVD affecting macOS Ventura 13 and iOS prior to 16. The issue could allow an app to cause a denial-of-service. Apple fixed it in iOS 16 and macOS Ventura 13 by improved state management. No exploit details are provided in the connected d...

CVE-2022-32918

This issue was addressed with improved data protection. This issue is fixed in iOS 16, macOS Ventura 13. An app may be able to bypass Privacy preferences...

CVE-2022-32888

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.7, macOS Ventura 13, iOS 16, iOS 15.7 and iPadOS 15.7, watchOS 9, macOS Monterey 12.6, tvOS 16. Processing maliciously crafted web content may lead to arbitrary code execution...

CVE-2022-32899

CVE-2022-32899 affects Apple Neural Engine and related Apple OS components; the issue could allow an app to execute arbitrary code with kernel privileges. Apple fixed it in iOS 15.7, iPadOS 15.7, iOS 16, macOS Ventura 13, and watchOS 9. The description notes bug fix via improved memory handling. ...

CVE-2022-32881

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.7, macOS Ventura 13, iOS 16, watchOS 9, macOS Monterey 12.6, tvOS 16. An app may be able to modify protected parts of the file system...

CVE-2022-32909

CVE-2022-32909 involves Apple iOS where improper cache handling could allow an app to access user‑sensitive data. Affected product: iOS (prior to 16); fix: iOS 16. Impact: data disclosure. CVSSv3.1 (NVD): 5.5 (Medium), Attack Vector: Local, Attack Complexity: Low, Privileges Required: None, User ...

CVE-2022-32909

The issue was addressed with improved handling of caches. This issue is fixed in iOS 16. An app may be able to access user-sensitive data...

CVE-2022-32903

A use after free issue was addressed with improved memory management. This issue is fixed in tvOS 16, iOS 16, watchOS 9. An app may be able to execute arbitrary code with kernel privileges...

CVE-2022-32827

A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 16, macOS Ventura 13. An app may be able to cause a denial-of-service...

CVE-2022-32925

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in tvOS 16, iOS 16, watchOS 9. An app may be able to cause unexpected system termination or write kernel memory...

CVE-2022-32858

CVE-2022-32858 affects Apple platforms (iOS, macOS, watchOS) where a memory handling issue could allow an app to leak sensitive kernel state. The official description indicates the root cause is improved memory handling, and Apple fixed it in iOS 16, macOS Ventura 13, and watchOS 9. Connected sou...

CVE-2022-32835

CVE-2022-32835 affects Apple platforms (iOS/iOS 16 and watchOS 9) and concerns reading a persistent device identifier due to entitlement checks. The issue is addressed with improved entitlements in iOS 16 and watchOS 9. According to the records, exploitation details are not provided; the CVSS ind...

CVE-2022-32870

A logic issue was addressed with improved state management. This issue is fixed in iOS 16, macOS Ventura 13, watchOS 9. A user with physical access to a device may be able to use Siri to obtain some call history information...

CVE-2022-32887

CVE-2022-32887 is an Apple iOS kernel-privilege escalation exposed by a memory handling issue. Multiple sources describe it as a local vulnerability that could allow an app to execute arbitrary code with kernel privileges, with a CVSS v3.1 base score of 7.8 (high) and requiring user interaction. ...

CVE-2022-42795

A memory consumption issue was addressed with improved memory handling. This issue is fixed in tvOS 16, iOS 16, macOS Ventura 13, watchOS 9. Processing a maliciously crafted image may lead to arbitrary code execution...

CVE-2022-32879

CVE-2022-32879 corresponds to a logic/state-management issue in Apple platforms that could allow a user with physical access to view contacts from the lock screen. Connected sources provide concrete details: affected modalities are macOS, iOS, iPadOS, watchOS, and tvOS; root cause stated as a log...

CVE-2022-32928

A logic issue was addressed with improved restrictions. This issue is fixed in iOS 16, macOS Ventura 13, watchOS 9. A user in a privileged network position may be able to intercept mail credentials...

CVE-2022-32889

CVE-2022-32889 is an Apple vulnerability affecting iOS and watchOS where a memory handling issue could allow an app to execute arbitrary code with kernel privileges. Apple and Red Hat sources indicate the root cause is memory handling, and fixes are in iOS 16 and watchOS 9. The impact is high (ke...

CVE-2022-32859

A logic issue was addressed with improved state management. This issue is fixed in iOS 16. Deleted contacts may still appear in spotlight search results...

CVE-2022-32887

The issue was addressed with improved memory handling. This issue is fixed in iOS 16. An app may be able to execute arbitrary code with kernel privileges...