Kernel Privilege Escalation Vulnerability in macOS Recovery

Kernel Privilege Escalation Vulnerability in macOS Recovery

CVE-2022-26743 · HIGH Severity

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in macOS Monterey 12.4. An attacker that has already achieved code execution in macOS Recovery may be able to escalate to kernel privileges.

Learn more about our Cis Benchmark Audit For Apple Macos.