CVE-2022-42806

Опубликовано: 01 нояб. 2022

Источник: nvd

CVSS3: 7

EPSS Низкий

Описание

A race condition was addressed with improved locking. This issue is fixed in iOS 16.1 and iPadOS 16, macOS Ventura 13. An app may be able to execute arbitrary code with kernel privileges.

Ссылки

https://support.apple.com/en-us/HT213488
Release Notes
Vendor Advisory
https://support.apple.com/en-us/HT213489
Release Notes
Vendor Advisory
https://support.apple.com/en-us/HT213488
Release Notes
Vendor Advisory
https://support.apple.com/en-us/HT213489
Release Notes
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*

Версия до 16.0 (исключая)

cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*

Версия до 16.1 (исключая)

cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*

Версия до 13.0 (исключая)

EPSS

Процентиль: 11%

0.00037

Низкий

7 High

CVSS3

Дефекты

CWE-362

Связанные уязвимости

GHSA-f4jq-v948-j29c