Apple macOS Monterey 12.3-CVE-2022-22616

May 4, 2022

NAME

AppleMultiple

  • Platforms Affected:
    Multiple

  • Risk Level:
    high

  • CVE Type:
    Unspecified

DESCRIPTION

CVE-2022-22616 is an unspecified vulnerability impacting Apple macOS Monterey versions 12.2.1 and earlier, Apple macOS Big Sur versions 11.6.4 and earlier, and Apple macOS Catalina Security Update 2022-001 and earlier. A Metasploit module was observed in open source.

CVSS Information:

  • CVSS 2.0 SCORE: 4
  • CVSS 3.0 SCORE: 6.3

  • Exploit Disclosed in the Public:
    true

  • Exploit Weaponised:
    true

  • PoC Link:
    hXXps://github[.]com//rapid7/metasploit-framework/blob/d60754ea374e708a8d3959adae14b2c5f11ab798/modules/exploits/osx/browser/osx_gatekeeper_bypass[.]rb

MITIGATION

Apple addressed the vulnerability in security advisories with updated versions.

  • Reference Link:
    https://support.apple.com/en-gb/HT213183

  • Patch Available:
    available

If you like the site, please consider joining the telegram channel and supporting us on Patreon using the button below.

Digital Patreon Wordmark FieryCoralv2

You may have missed

image

[KILLSEC] – Ransomware Victim: BluMed Health

November 15, 2024
CISA Logo

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

November 15, 2024
CISA Logo

CISA: CISA Releases One Industrial Control Systems Advisory

November 15, 2024
CISA Logo

CISA: Oracle Releases Quarterly Critical Patch Update Advisory for October 2024

November 15, 2024
CISA Logo

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

November 15, 2024