PT-2022-21506 · Apple · Apple Macos+1
Co0Py_Cat
+1
·
Published
2022-07-20
·
Updated
2022-11-02
·
CVE-2022-32831
CVSS v3.1
7.1
High
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
macOS versions prior to 11.6.8
macOS versions prior to 12.5
macOS Catalina (affected versions not specified), with fix in Security Update 2022-005
Description
The issue is related to an out-of-bounds read that can be triggered by processing a maliciously crafted AppleScript binary. This may result in unexpected termination or disclosure of process memory. The estimated number of potentially affected devices and details about real-world incidents are not provided.
Recommendations
For macOS versions prior to 11.6.8, update to macOS Big Sur 11.6.8 or later.
For macOS versions prior to 12.5, update to macOS Monterey 12.5 or later.
For macOS Catalina, apply Security Update 2022-005.
Fix
Out of bounds Read
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Applescript
Apple Macos