Type Confusion Vulnerability Allows Arbitrary Code Execution with Kernel Privileges

Type Confusion Vulnerability Allows Arbitrary Code Execution with Kernel Privileges

CVE-2022-46706 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

A type confusion issue was addressed with improved state handling. This issue is fixed in Security Update 2022-003 Catalina, macOS Monterey 12.3, macOS Big Sur 11.6.5. An application may be able to execute arbitrary code with kernel privileges.

Learn more about our Cis Benchmark Audit For Apple Macos.