VDB
CVE-2022-46689
CVE-2022-46689
PUBLISHED
In Apple macOS existieren mehrere Schwachstellen aufgrund verschiedener Fehler in der Speicherverwaltung, sowie aufgrund fehlender oder mangelhafter Prüfungen. Betroffen sind zahlreiche Komponenten, beispielsweise WebKit und der Kernel von macOS. Ein Angreifer kann dadurch den Nutzer täuschen, Informationen offenlegen, Sicherheitsmechanismen umgehen, seine Privilegien eskalieren und beliebigen Code mit Kernel-Rechten ausführen.
EPSS 85.33% · 99.4th percentile
Risk Scores
EPSS Score
85.33%
99.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Apple iOS <12.5.7 |
Exploit Intelligence
- iOS customization app powered by CVE-2022-46689. No jailbreak required. (github-poc-repo)
- iOS customization app powered by CVE-2022-46689. No jailbreak required. (github-poc-repo)
- iOS customization app powered by CVE-2022-46689. No jailbreak required. (github-poc-repo)
- iOS customization app powered by CVE-2022-46689. No jailbreak required. (github-poc-repo)
- iOS customization app powered by CVE-2022-46689. No jailbreak required. (github-poc-repo)
- iOS customization app powered by CVE-2022-46689. No jailbreak required. (github-poc-repo)
- iOS customization app powered by CVE-2022-46689 (github-poc-repo)
- iOS customization app powered by CVE-2022-46689 (github-poc-repo)
- iOS customization app powered by CVE-2022-46689 (github-poc-repo)
- iOS customization app powered by CVE-2022-46689 (github-poc-repo)
…and 203 more exploits
Timeline
- Dec 13, 2022 CVE Published
- Dec 16, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Dec 19, 2022 PoC Published
- Dec 21, 2022 EPSS Score
- Feb 3, 2023 PoC Published
- Mar 7, 2023 EPSS Score
- Apr 5, 2023 PoC Published
- Feb 13, 2025 PoC Published
- Mar 17, 2025 EPSS Score
- Mar 19, 2025 EPSS Score
- Mar 20, 2025 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-2313.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-2313 advisory
- https://support.apple.com/de-de/HT213532 advisory
- https://support.apple.com/de-de/HT213533 advisory
- https://support.apple.com/de-de/HT213534 advisory
- https://www.cisa.gov/news-events/alerts/2024/01/31/cisa-adds-one-known-exploited-vulnerability-catalog exploit
- https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-2321.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-2321 advisory
- https://support.apple.com/de-de/HT213530 advisory
- https://support.apple.com/de-de/HT213531 advisory
- https://support.apple.com/en-us/HT213597 advisory