Apple macOS Out-of-Bounds Read Vulnerability

Technical Severity

MEDIUM

5.5 / 10

Minimal Risk Critical

Vector Specification

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Exploitation Likelihood

0.23 %

Predictive Probability

Percentile Rank

45.9 th

Documented as more likely to be exploited than 45.9% of known CVEs.

Detection Date

Apr 04, 2022

Remediation Due

Apr 25, 2022

CISA Catalog Active

Threat Analysis

macOS Monterey contains an out-of-bounds read vulnerability that could allow an application to read kernel memory.

Apply updates per vendor instructions.

Vendor Identity

Apple

Affected Product

macOS

Ransomware Status

Campaign Use Unknown

Weakness Classification

National Vulnerability Database

https://nvd.nist.gov/vuln/detail/CVE-2022-22674