CVE-2022-46694

CVSS V2 None CVSS V3 None
Description
An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in iOS 16.2 and iPadOS 16.2, iOS 15.7.2 and iPadOS 15.7.2, tvOS 16.2, watchOS 9.2. Parsing a maliciously crafted video file may lead to kernel code execution.
Overview
  • CVE ID
  • CVE-2022-46694
  • Assigner
  • product-security@apple.com
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2022-12-15T19:15:26
  • Last Modified Date
  • 2023-01-09T16:50:06
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* 1 OR 15.7.2
cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* 1 OR 16.0 16.2
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* 1 OR 15.7.2
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* 1 OR 16.0 16.2
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:* 1 OR 16.2
cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:* 1 OR 9.2
History
Created Old Value New Value Data Type Notes
2022-12-15 19:16:08 Added to TrackCVE
2022-12-15 20:15:37 2022-12-15T19:15:26.347 2022-12-15T19:15:26 CVE Published Date updated
2022-12-15 20:15:37 2022-12-15T19:56:28 CVE Modified Date updated
2022-12-15 20:15:37 Received Awaiting Analysis Vulnerability Status updated
2022-12-19 15:15:02 Awaiting Analysis Undergoing Analysis Vulnerability Status updated
2022-12-21 07:02:37 2022-12-21T06:15:12 CVE Modified Date updated
2022-12-21 07:02:37 Undergoing Analysis Modified Vulnerability Status updated
2022-12-21 07:02:38 Weakness Enumeration new
2022-12-21 07:02:40 CPE Information updated
2022-12-21 07:02:40 References updated
2022-12-21 17:14:59 Modified Undergoing Analysis Vulnerability Status updated
2023-01-09 17:16:49 2023-01-09T16:50:06 CVE Modified Date updated
2023-01-09 17:16:49 Undergoing Analysis Analyzed Vulnerability Status updated