Issued: Monday, 14 February, 2022 |
Last Revision: Monday, 14 February, 2022 |
Vendor: |
Product: |
Severity Level: |
An urgent update has been released by Apple for iOS, iPadOS and macOS Monterey to patch a zero-day vulnerability.
The vulnerability has been tracked as CVE-2022-22620. Upon processing malicious web content on affected devices, attackers can execute arbitrary code.
As per Apple and other security researcher, there is high possibility of active exploitation of this vulnerability by threat actors.
CVE/Vulnerability | Description | CVSS3.0 Score |
CVE-2022-22620 | A use after free Vulnerability | n/a |
Table 1: Vulnerability details
CVE/Vulnerability | Affected Product(s) |
CVE-2022-22620 | iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, iPod touch (7th generation) and desktops and notebooks running prior version of macOS Monterey 12.2.1. |
Table 2: Vulnerable versions
We encourage the Organizations and individual users to update the affected products with the vendor provided updates (iOS 15.3.1, iPadOS 15.3.1 and macOS Monterey 12.2.1) as soon as possible.