CVE-2022-32917
The issue was addressed with improved bounds checks. This issue is fixed in macOS Monterey 12.6, iOS 15.7 and iPadOS 15.7, iOS 16, macOS Big Sur...
Basic Information
- CVE State
- PUBLISHED
- Reserved Date
- June 09, 2022
- Published Date
- September 20, 2022
- Last Updated
- January 29, 2025
- Vendor
- Apple
- Product
- iOS, macOS
- Description
- The issue was addressed with improved bounds checks. This issue is fixed in macOS Monterey 12.6, iOS 15.7 and iPadOS 15.7, iOS 16, macOS Big Sur 11.7. An application may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited..
CVSS Scores
CVSS v3.1
7.8 - HIGH
Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
SSVC Information
- Exploitation
- active
- Technical Impact
- total
Exploit Status
- Exploited in the Wild
- Yes (added 2022-09-14 00:00:00 UTC) Source
References
https://support.apple.com/en-us/HT213446
https://support.apple.com/en-us/HT213443
https://support.apple.com/en-us/HT213445
https://support.apple.com/en-us/HT213444
http://seclists.org/fulldisclosure/2022/Oct/39
http://seclists.org/fulldisclosure/2022/Oct/40
http://seclists.org/fulldisclosure/2022/Oct/43
http://seclists.org/fulldisclosure/2022/Oct/45
Known Exploited Vulnerability Information
| Source | Added Date |
|---|---|
| CISA | 2022-09-14 00:00:00 UTC |