Lucene search
AppleCVE-2022-32936HistoryNov 01, 2022 - 8:15 p.m.
CVE-2022-32936
2022-11-0120:15:19
CWE-125
apple
web.nvd.nist.gov
37
cve-2022-32936
security vulnerability
input validation
macos ventura 13
kernel memory disclosure
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
AI Score
5.8
Confidence
Low
EPSS
0.001
Percentile
25.9%
An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Ventura 13. An app may be able to disclose kernel memory.
Affected configurations
Node
applemacosRange<13.0
CNA Affected
[
{
"vendor": "Apple",
"product": "macOS",
"versions": [
{
"version": "unspecified",
"lessThan": "13",
"status": "affected",
"versionType": "custom"
}
]
}
]References
Related
prion
prion
Input validation
2022-11-01 20:15:00
nvd
nvd
CVE-2022-32936
2022-11-01 20:15:19
cvelist
cvelist
CVE-2022-32936
2022-11-01 00:00:00
apple
apple
About the security content of macOS Ventura 13
2022-10-24 00:00:00
openvas
openvas
Apple Mac OS X Security Update (HT213488)
2023-07-25 00:00:00
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
AI Score
5.8
Confidence
Low
EPSS
0.001
Percentile
25.9%
Related for CVE-2022-32936