CVE-2022-32908

high

Description

A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Monterey 12.6, iOS 15.7 and iPadOS 15.7, iOS 16, macOS Big Sur 11.7. A user may be able to elevate privileges.

References

https://support.apple.com/en-us/HT213443

https://support.apple.com/en-us/HT213444

https://support.apple.com/en-us/HT213445

https://support.apple.com/en-us/HT213446

https://support.apple.com/kb/HT213488

https://support.apple.com/kb/HT213486

https://support.apple.com/kb/HT213487

http://seclists.org/fulldisclosure/2022/Oct/28

http://seclists.org/fulldisclosure/2022/Oct/41

Details

Source: MITRE

Published: 2022-09-20

Updated: 2022-11-04

Type: CWE-787

CVSS v3

Base Score: 7.8

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 1.8

Severity: HIGH