CVE-2022-26743
CVE-2022-26743
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
26 May 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in macOS Monterey 12.4. An attacker that has already achieved code execution in macOS Recovery may be able to escalate to kernel privileges.
Affected products
Apple · macOSReferences
https://support.apple.com/en-us/HT213257