CVE-2022-42809 : The issue was addressed with improved memory handling. This issue is fixed in ma

The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13. Processing a maliciously crafted gcx file may lead to unexpected app termination or arbitrary code execution.

Published 2022-11-01 20:15:23

Updated 2022-11-03 03:54:36

Source Apple Inc.

View at NVD, CVE.org

Products affected by CVE-2022-42809

Apple » Macos
Versions before (<) 13.0
cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2022-42809

EPSS FAQ

0.09%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 24 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2022-42809

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
7.8	HIGH	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H	1.8	5.9	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Unchanged Confidentiality: High Integrity: High Availability: High

References for CVE-2022-42809

https://support.apple.com/en-us/HT213488

About the security content of macOS Ventura 13 - Apple Support
Release Notes;Vendor Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2022-42809

Products affected by CVE-2022-42809

Exploit prediction scoring system (EPSS) score for CVE-2022-42809

CVSS scores for CVE-2022-42809

References for CVE-2022-42809