First published: Mon Oct 24 2022(Updated: )
A type confusion issue was addressed with improved checks. This issue is fixed in macOS Ventura 13. An app may be able to execute arbitrary code with kernel privileges.
Credit: Tommy Muir @Muirey03 Tommy Muir @Muirey03 product-security@apple.com
Affected Software | Affected Version | How to fix |
---|---|---|
<13 | 13 | |
Apple macOS | <12.6.3 | |
Apple macOS Monterey | <12.6.3 | 12.6.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
CVE-2022-32915 is a type confusion vulnerability in Apple's DriverKit that has been fixed with improved checks.
CVE-2022-32915 affects macOS Ventura versions up to, but excluding, version 13.
CVE-2022-32915 affects macOS Monterey versions up to, but excluding, version 12.6.3.
To fix CVE-2022-32915, update your macOS Ventura to version 13 or later, or update your macOS Monterey to version 12.6.3 or later.
Yes, you can find more information about CVE-2022-32915 on the Apple support page: [CVE-2022-32915](https://support.apple.com/en-us/HT213604).