CVE-2022-22612
Description
A memory consumption issue was addressed with improved memory handling. This issue is fixed in tvOS 15.4, iOS 15.4 and iPadOS 15.4, iTunes 12.12.3 for Windows, watchOS 8.5, macOS Monterey 12.3. Processing a maliciously crafted image may lead to heap corruption.
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.285
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2022-22611,CVE-2022-22612,CVE-2022-22662,CVE-2022-22629 are fixed in Apple iTunes (X64) (12.12.3.5) | Windows |
| Vulnerabilities CVE-2022-22611,CVE-2022-22612,CVE-2022-22662,CVE-2022-22629 are fixed in Apple iTunes (12.12.3.5) | Windows |
| Vulnerabilities CVE-2022-22611,CVE-2022-22612,CVE-2022-22629 are affected in Apple iTunes (X64) 12.12.2 | Windows |
| Vulnerabilities CVE-2022-22611,CVE-2022-22612,CVE-2022-22629 are affected in Apple iTunes 12.12.2 | Windows |
| Multiple vulnerabilities are fixed in Mac OS - Monterey 12.3 (Software Update) - AutoReboot | Mac |
| Multiple vulnerabilities are fixed in Mac OS - Monterey 12.3.1 (Software Update) - AutoReboot | Mac |
| Multiple Vulnerabilities are affected in Apple iTunes For Mac 12.11.3 | Mac |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-323898 | Apple iTunes (X64) (12.12.3.5) |
| PATCH-323897 | Apple iTunes (12.12.3.5) |
| PATCH-608134 | Mac OS - Monterey 12.7.6 (Software Update) - AutoReboot (CVE-2024-27877) |
| PATCH-608134 | Mac OS - Monterey 12.7.6 (Software Update) - AutoReboot (CVE-2024-27877) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234