← Back

CVE-2022-32785

nvd nist
Published: Sep 23, 2022Modified: May 22, 2025

JSON object

Loading...
5.5
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Exploitability: 1.8 / Impact: 3.6
Source: NVD

Description

A null pointer dereference was addressed with improved validation. This issue is fixed in iOS 15.6 and iPadOS 15.6, Security Update 2022-005 Catalina, macOS Big Sur 11.6.8, macOS Monterey 12.5. Processing an image may lead to a denial-of-service.

Affected (19)

Apple
4 products
Ipados
Iphone Os
Mac Os X
Macos
Configuration A
19 vulnerable
Vulnerable SoftwareAffected Versions
Ipados
Before 15.6
Iphone Os
Before 15.6
Apple
Mac Os X
Version 10.15.7 security_update_2020-001
Mac Os X
Version 10.15.7 security_update_2021-001
Mac Os X
Version 10.15.7 security_update_2021-002
Mac Os X
Version 10.15.7 security_update_2021-003
Mac Os X
Version 10.15.7 security_update_2021-004
Mac Os X
Version 10.15.7 security_update_2021-005
Mac Os X
Version 10.15.7 security_update_2021-006
Mac Os X
Version 10.15.7 security_update_2021-007
Mac Os X
Version 10.15.7 security_update_2021-008
Mac Os X
Version 10.15.7 security_update_2022-001
Mac Os X
Version 10.15.7 security_update_2022-002
Mac Os X
Version 10.15.7 security_update_2022-003
Apple
Macos
Before 10.15.7
Macos
From 11.0 to 11.6.8
Macos
From 12.0 to 12.5
Macos
Version 10.15.7
Macos
Version 10.15.7 security_update_2022-004

Related CWEs

CWE-476
NULL Pointer Dereference
The product dereferences a pointer that it expects to be valid but is NULL.

References (8)

Source: product-security@apple.com
Vendor Advisory
Source: product-security@apple.com
Vendor Advisory
Source: product-security@apple.com
Vendor Advisory
Source: product-security@apple.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.