CVE-2022-32785

CVE Database · CVE-2022-32785

CVE-2022-32785

· MEDIUMModified

CVSS v3.1

5.5

EPSS

0.67%

Published

Sep 23, 2022

Modified

May 22, 2025

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A null pointer dereference was addressed with improved validation. This issue is fixed in iOS 15.6 and iPadOS 15.6, Security Update 2022-005 Catalina, macOS Big Sur 11.6.8, macOS Monterey 12.5. Processing an image may lead to a denial-of-service.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Weaknesses (CWE)

CWE-476CWE-476

Affected Products (19)

apple · ipados (up to 15.6)vulnerable

apple · iphone_os (up to 15.6)vulnerable

apple · mac_os_xvulnerable

References (8)

https://support.apple.com/en-us/HT213343

Vendor Advisory

https://support.apple.com/en-us/HT213344

Vendor Advisory

https://support.apple.com/en-us/HT213345

Vendor Advisory

https://support.apple.com/en-us/HT213346

Vendor Advisory

https://support.apple.com/en-us/HT213343

Vendor Advisory

https://support.apple.com/en-us/HT213344

Vendor Advisory

https://support.apple.com/en-us/HT213345

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs