VDB
CVE-2022-46704
CVE-2022-46704
PUBLISHED
In Apple macOS existieren mehrere Schwachstellen aufgrund verschiedener Fehler in der Speicherverwaltung, sowie aufgrund fehlender oder mangelhafter Prüfungen. Betroffen sind zahlreiche Komponenten, beispielsweise WebKit und der Kernel von macOS. Ein Angreifer kann dadurch den Nutzer täuschen, Informationen offenlegen, Sicherheitsmechanismen umgehen, seine Privilegien eskalieren und beliebigen Code mit Kernel-Rechten ausführen.
EPSS 0.13% · 31.6th percentile
Risk Scores
EPSS Score
0.13%
31.6th percentile
Exploit Intelligence
- https://www.cisa.gov/news-events/alerts/2024/01/31/cisa-adds-one-known-exploited-vulnerability-catalog (certbund)
- CIRCL seen: CVE-2022-46704 (circl-sighting)
- https://support.apple.com/en-us/HT213532 (circl)
- https://support.apple.com/en-us/HT213534 (circl)
- https://support.apple.com/en-us/HT213533 (circl)
- macos_v2_generated.go (github-poc)
- macos_v2_generated.go (github-poc)
- macos_v2_generated.go (github-poc)
- macos_v2_generated.go (github-poc)
- macos_v2_generated.go (github-poc)
…and 5 more exploits
Timeline
- Dec 13, 2022 CVE Published
- Feb 28, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 8, 2023 EPSS Score
- May 17, 2023 EPSS Score
- Jun 26, 2023 EPSS Score
- Aug 4, 2023 EPSS Score
- Sep 12, 2023 EPSS Score
- Oct 21, 2023 EPSS Score
- Nov 29, 2023 EPSS Score
- Jan 8, 2024 EPSS Score
- Feb 16, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-2313.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-2313 advisory
- https://support.apple.com/de-de/HT213532 advisory
- https://support.apple.com/de-de/HT213533 advisory
- https://support.apple.com/de-de/HT213534 advisory
- https://www.cisa.gov/news-events/alerts/2024/01/31/cisa-adds-one-known-exploited-vulnerability-catalog exploit