Lucene search
HistoryDec 15, 2022 - 7:15 p.m.
CVE-2022-32860
ios
ipados
macos
out-of-bounds write
app security
arbitrary code execution
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
31.1%
An out-of-bounds write was addressed with improved input validation. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5, macOS Big Sur 11.6.8. An app may be able to execute arbitrary code with kernel privileges.
Affected configurations
Node
appleipadosRange<15.6
ORappleiphone_osRange<15.6
ORapplemacosRange11.0–11.6.8
ORapplemacosRange12.0.0–12.5
Related
prion
prion
Input validation
2022-12-15 19:15:00
cve
cve
CVE-2022-32860
2022-12-15 19:15:17
cvelist
cvelist
CVE-2022-32860
2022-12-15 00:00:00
apple
apple
About the security content of macOS Big Sur 11.6.8
2022-07-20 00:00:00
About the security content of Security Update 2022-005 Catalina
2022-07-20 00:00:00
About the security content of iOS 15.6 and iPadOS 15.6
2022-07-20 00:00:00
nessus
nessus
macOS 12.x < 12.5 Multiple Vulnerabilities (HT213345)
2022-08-19 00:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
31.1%
Related for NVD:CVE-2022-32860