Security Alert (A22-03-09): Multiple Vulnerabilities in Apple iOS and iPadOS


 

Published on: 15 March 2022

  
  

Description:

Apple has released iOS 15.4 and iPadOS 15.4 to fix the vulnerabilities in various Apple devices. The list of vulnerability information can be found at:

https://support.apple.com/en-us/HT213182

 

Affected Systems:

  • iPhone 6s and later
  • iPad 5th generation and later, Air 2 and later, mini 4 and later, Pro (all models)
  • iPod touch (7th generation)

 

Impact:

A successful exploitation could lead to arbitrary code execution, denial of service, information disclosure, privilege escalation or security restriction bypass on an affected device.

 

Recommendation:

Apple has released new version of iOS and iPadOS to address the issue.

The updates can be obtained through the auto-update mechanism. Users of affected systems should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk.

 

More Information:

  • https://support.apple.com/en-us/HT213182
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-36976
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22596
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22598 (to CVE-2022-22600)
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22609 (to CVE-2022-22615)
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22618
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22621
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22622
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22624
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22628
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22629
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22632 (to CVE-2022-22643)
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22652
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22653
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22659
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22662
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22666 (to CVE-2022-22668)
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22670
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22671


Tag: Apple , iOS , iPhone , iPad , iPod , iPadOS
Tags