CVE-2022-32908

high

Description

A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Monterey 12.6, iOS 15.7 and iPadOS 15.7, iOS 16, macOS Big Sur 11.7. A user may be able to elevate privileges.

References

http://seclists.org/fulldisclosure/2022/Oct/41

http://seclists.org/fulldisclosure/2022/Oct/28

https://support.apple.com/en-us/HT213486

https://support.apple.com/en-us/HT213443

https://support.apple.com/kb/HT213488

https://support.apple.com/kb/HT213487

https://support.apple.com/kb/HT213486

https://support.apple.com/en-us/HT213446

https://support.apple.com/en-us/HT213445

https://support.apple.com/en-us/HT213444

http://seclists.org/fulldisclosure/2022/Oct/39

Details

Source: Mitre, NVD

Published: 2022-09-20

Updated: 2023-11-07

Risk Information

CVSS v2

Base Score: 6.8

Vector: CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:C

Severity: Medium

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.00043

Detections

Analytics