CVE-2022-42831

A race condition was addressed with improved locking. This issue is fixed in iOS 16.1 and iPadOS 16, macOS Ventura 13. An app with root privileges may be able to execute arbitrary code with kernel privileges.

CVSS v3 6.4 MEDIUM

6.4^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 0.5 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity HIGH

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://support.apple.com/en-us/HT213488	Release Notes Vendor Advisory
https://support.apple.com/en-us/HT213489	Release Notes Vendor Advisory
https://support.apple.com/en-us/HT213488	Release Notes Vendor Advisory
https://support.apple.com/en-us/HT213489	Release Notes Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:apple:ipados::::::::
	cpe:2.3:o:apple:iphone_os::::::::
	cpe:2.3:o:apple:macos::::::::

History

21 Nov 2024, 07:25

Type	Values Removed	Values Added
References	~~() https://support.apple.com/en-us/HT213488 - Release Notes, Vendor Advisory~~	() https://support.apple.com/en-us/HT213488 - Release Notes, Vendor Advisory
References	~~() https://support.apple.com/en-us/HT213489 - Release Notes, Vendor Advisory~~	() https://support.apple.com/en-us/HT213489 - Release Notes, Vendor Advisory

Information

Published : 2022-11-01 20:15

Updated : 2024-11-21 07:25

NVD link : CVE-2022-42831

Mitre link : CVE-2022-42831

CVE.ORG link : CVE-2022-42831

JSON object : View

Products Affected

apple

iphone_os
macos
ipados

CWE

CWE-362

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

{"id": "CVE-2022-42831", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.4, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 0.5}]}, "published": "2022-11-01T20:15:24.710", "references": [{"url": "https://support.apple.com/en-us/HT213488", "tags": ["Release Notes", "Vendor Advisory"], "source": "product-security@apple.com"}, {"url": "https://support.apple.com/en-us/HT213489", "tags": ["Release Notes", "Vendor Advisory"], "source": "product-security@apple.com"}, {"url": "https://support.apple.com/en-us/HT213488", "tags": ["Release Notes", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://support.apple.com/en-us/HT213489", "tags": ["Release Notes", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-362"}]}], "descriptions": [{"lang": "en", "value": "A race condition was addressed with improved locking. This issue is fixed in iOS 16.1 and iPadOS 16, macOS Ventura 13. An app with root privileges may be able to execute arbitrary code with kernel privileges."}, {"lang": "es", "value": "Se solucion\u00f3 una condici\u00f3n de ejecuci\u00f3n con un bloqueo mejorado. Este problema se solucion\u00f3 en iOS 16.1 y iPadOS 16, macOS Ventura 13. Una aplicaci\u00f3n con privilegios de root puede ejecutar c\u00f3digo arbitrario con privilegios de kernel."}], "lastModified": "2024-11-21T07:25:26.100", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8CA5BE49-4E08-4ABB-BF4B-03147ED85DDD", "versionEndExcluding": "16.0"}, {"criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E7CF2D18-109B-40A0-96F0-79894CE484AC", "versionEndExcluding": "16.1"}, {"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "71E032AD-F827-4944-9699-BB1E6D4233FC", "versionEndExcluding": "13.0"}], "operator": "OR"}]}], "sourceIdentifier": "product-security@apple.com"}