Apple macOS Out-of-Bounds Write Vulnerability

Technical Severity

HIGH

7.8 / 10

Minimal Risk Critical

Vector Specification

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Exploitation Likelihood

0.98 %

Predictive Probability

Percentile Rank

76.3 th

Documented as more likely to be exploited than 76.3% of known CVEs.

Detection Date

Apr 04, 2022

Remediation Due

Apr 25, 2022

CISA Catalog Active

Threat Analysis

macOS Monterey contains an out-of-bounds write vulnerability that could allow an application to execute arbitrary code with kernel privileges.

Apply updates per vendor instructions.

Vendor Identity

Apple

Affected Product

macOS

Ransomware Status

Campaign Use Unknown

Weakness Classification

National Vulnerability Database

https://nvd.nist.gov/vuln/detail/CVE-2022-22675