CVE-2022-32905 — Vulnetix

CVE-2022-32905 PUBLISHED CVSS 8.600000381469727 HIGH

In Apple macOS existieren mehrere Schwachstellen. Diese sind auf Fehler in den Komponenten "Accelerate Framework", "Apple Neural Engine", "AppleAVD", "AppleMobileFileIntegrity", "ATS", "Audio", "AVEVideoEncoder", "Calendar", "CFNetwork", "ColorSync", "Crash Reporter", "curl", "Directory Utility", "DriverKit", "Exchange", "Find My", "Finder", "GPU Drivers", "Grapher", "Image Processing", "ImageIO", "Intel Graphics Driver", "IOHIDFamily", "IOKit", "Kernel", "Mail", "Maps", MediaLibrary", "ncurses", "Notes", "Notifications", "PackageKit", "Photos", "ppp", "Ruby", "Sandbox", "Security", "Shortcuts", "Sidecar", "Siri", "SMB", "Software Update", "SQLite", "Vim", "Weather", "WebKit", "WebKit PDF" sowie "WebKit Sandboxing". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode mit Administratorrechten auszuführen, beliebigen Programmcode auszuführen, seine Privilegien zu erweitern, einen Denial of Service Zustand herbeizuführen, Dateien zu manipulieren, Informationen offenzulegen, Sicherheitsvorkehrungen zu umgehen oder sonstige Auswirkungen zu verursachen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.

EPSS 0.06% · 19.0th percentile

Risk Scores

CVSS v4.0

8.600000381469727

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

EPSS Score

0.06%

19.0th percentile

Affected Products

Vendor	Product	Versions
Apple	Apple macOS Monterey 12.6.1
Apple	Apple macOS Big Sur 11.7.1
Apple	Apple macOS Ventura_13

Timeline

Oct 24, 2022 CVE Published
Nov 2, 2022 EPSS Score
Nov 3, 2022 EPSS Score
Dec 15, 2022 EPSS Score
Jan 26, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 10, 2023 EPSS Score
Apr 22, 2023 EPSS Score
Jun 3, 2023 EPSS Score
Aug 28, 2023 EPSS Score
Oct 10, 2023 EPSS Score
Nov 21, 2023 EPSS Score

References

https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-1846.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-1846 advisory
https://support.apple.com/en-us/HT213488 advisory
https://support.apple.com/en-us/HT213493 advisory
https://support.apple.com/en-us/HT213494 advisory

Open in Interactive Console →