CVE-2022-46709 — Vulnetix

CVE-2022-46709 PUBLISHED CVSS 8.600000381469727 HIGH

In Apple macOS existieren mehrere Schwachstellen. Diese sind auf Fehler in den Komponenten "Accelerate Framework", "Apple Neural Engine", "AppleAVD", "AppleMobileFileIntegrity", "ATS", "Audio", "AVEVideoEncoder", "Calendar", "CFNetwork", "ColorSync", "Crash Reporter", "curl", "Directory Utility", "DriverKit", "Exchange", "Find My", "Finder", "GPU Drivers", "Grapher", "Image Processing", "ImageIO", "Intel Graphics Driver", "IOHIDFamily", "IOKit", "Kernel", "Mail", "Maps", MediaLibrary", "ncurses", "Notes", "Notifications", "PackageKit", "Photos", "ppp", "Ruby", "Sandbox", "Security", "Shortcuts", "Sidecar", "Siri", "SMB", "Software Update", "SQLite", "Vim", "Weather", "WebKit", "WebKit PDF" sowie "WebKit Sandboxing". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode mit Administratorrechten auszuführen, beliebigen Programmcode auszuführen, seine Privilegien zu erweitern, einen Denial of Service Zustand herbeizuführen, Dateien zu manipulieren, Informationen offenzulegen, Sicherheitsvorkehrungen zu umgehen oder sonstige Auswirkungen zu verursachen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.

EPSS 0.64% · 71.0th percentile

Risk Scores

CVSS 4.0

8.600000381469727

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

EPSS Score

0.64%

71.0th percentile

Affected Products

Vendor	Product	Versions
Apple	Apple macOS Monterey 12.6.1
Apple	Apple macOS Big Sur 11.7.1
Apple	Apple macOS Ventura_13

Exploit Intelligence

Timeline

Sep 12, 2022 CVE Published
Apr 11, 2023 EPSS Score
May 19, 2023 EPSS Score
Jun 26, 2023 EPSS Score
Aug 2, 2023 EPSS Score
Sep 9, 2023 EPSS Score
Oct 17, 2023 EPSS Score
Nov 24, 2023 EPSS Score
Dec 31, 2023 EPSS Score
Mar 16, 2024 EPSS Score
Apr 23, 2024 EPSS Score
May 30, 2024 EPSS Score

References

https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-1394.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-1394 advisory
https://support.apple.com/en-us/HT213445 advisory
https://support.apple.com/en-us/HT213446 advisory
https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-1846.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-1846 advisory
https://support.apple.com/en-us/HT213488 advisory
https://support.apple.com/en-us/HT213493 advisory
https://support.apple.com/en-us/HT213494 advisory

Open in Interactive Console →