Back to KEVs

CVE-2022-22674

An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue is...

Basic Information

CVE State
PUBLISHED
Reserved Date
January 05, 2022
Published Date
May 26, 2022
Last Updated
January 29, 2025
Vendor
Apple
Product
macOS
Description
An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue is fixed in macOS Monterey 12.3.1, Security Update 2022-004 Catalina, macOS Big Sur 11.6.6. A local user may be able to read kernel memory.

CVSS Scores

CVSS v3.1

5.5 - MEDIUM

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

SSVC Information

Exploitation
active
Technical Impact
partial

Exploit Status

Exploited in the Wild
Yes (added 2022-04-04 00:00:00 UTC) Source

References

https://support.apple.com/en-us/HT213255 https://support.apple.com/en-us/HT213256 https://support.apple.com/en-us/HT213220

Known Exploited Vulnerability Information

Source Added Date
CISA 2022-04-04 00:00:00 UTC