← back
CVE-2022-22616

CVE-2022-22616

EPSS 7.7%
Vexday Risk Score
18Low
SSVC decision (CISA)
Attend
PoC available → attend closely
CVSS EPSS 7.7%KEV nãoPoC Nuclei Metasploit simPatch
Lifecycle
25 Mar 2021Metasploit module available
26 May 2022Published on NVD
Recommendation: Plan a near-term fix — a public PoC already exists.
This issue was addressed with improved checks. This issue is fixed in Security Update 2022-003 Catalina, macOS Monterey 12.3, macOS Big Sur 11.6.5. A maliciously crafted ZIP archive may bypass Gatekeeper checks.
Affected products
Apple · macOS

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://support.apple.com/en-us/HT213183https://support.apple.com/en-us/HT213184https://support.apple.com/en-us/HT213185