Arbitrary Code Execution Vulnerability in Apple macOS
CVE-2022-47915

7.8HIGH

Key Information:

Vendor: Apple
Status: macOS
Vendor: CVE Published:; 10 January 2024

Summary

This vulnerability involves a memory handling flaw in Apple’s macOS operating system, specifically affecting macOS Ventura 13. The issue allows an application to execute arbitrary code with kernel privileges, potentially compromising the integrity of the operating system and enabling unauthorized access to sensitive functions and data. The vulnerability highlights the importance of robust security measures and timely system updates to mitigate such risks effectively.

Affected Version(s)

macOS < 13

References

https://support.apple.com/en-us/HT213488

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Jan 10, 2024
Vulnerability Reserved
Sep 19, 2023