VDB
WID-SEC-W-2022-1057
WID-SEC-W-2022-1057
PUBLISHED
CVSS 8.699999809265137 HIGH
Apple macOS ist ein Betriebssystem, das auf FreeBSD und Mach basiert.
Risk Scores
CVSS 4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple macOS Catalina < 2022-004 | ||
| Apple macOS Monterey < 12.4 | ||
| Apple macOS Big Sur < 11.6.6 |
Exploit Intelligence
- Thực nghiệm CVE-2021-44790 (github-poc-repo)
- jeongjunsoo/CVE-2022-0778 (github-poc-repo)
- Benasin/CVE-2022-22720 (github-poc-repo)
- Integer overflow in Apple ImageIO WebP parsing (macOS/iOS) (github-poc-repo)
- Proof-of-concept for CVE-2022-26766 on macOS 12.3.1 (github-poc)
- PCIDriverKit proof-of-concept for CVE-2022-26763 (github-poc)
- acheong08/CVE-2022-26726-POC2 (github-poc)
- TCC Bypass (github-poc)
- theori-io/CVE-2022-26717-Safari-WebGL-Exploit (github-poc)
- Integer overflow in Apple ImageIO WebP parsing (macOS/iOS) (github-poc)
…and 34 more exploits
Timeline
- May 16, 2022 CVE Published
- Jun 21, 2023 CVE Updated
- May 12, 2025 PoC Published
References
- https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-1057.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-1057 advisory
- https://support.apple.com/en-us/HT213255 url
- https://support.apple.com/en-us/HT213256 url
- https://support.apple.com/en-us/HT213257 url
- https://github.com/acheong08/CVE-2022-26726-POC url
- https://www.cisa.gov/uscert/ncas/current-activity/2022/04/01/apple-releases-security-updates-0 url
- https://lists.debian.org/debian-lts-announce/2022/09/msg00028.html url
- https://wojciechregula.blog/post/macos-sandbox-escape-via-terminal/ url