Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2022-71990
HistoryJul 27, 2022 - 12:00 a.m.

Apple macOS Monterey Buffer Overflow Vulnerability (CNVD-2022-71990)

2022-07-2700:00:00
China National Vulnerability Database
www.cnvd.org.cn
8

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Apple macOS Monterey is the 18th major release of Apple’s Macintosh desktop operating system, macOS. Apple macOS suffers from a buffer overflow vulnerability caused by a boundary error in the SMB component, which allows local applications to trigger memory corruption and execute arbitrary code with root privileges, which could be exploited by an attacker to An attacker could use the vulnerability to elevate privileges on the system.

CPENameOperatorVersion
Apple MacOS >=12.0,lt12.5

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Related for CNVD-2022-71990