CVE-2022-42861
published 2022-12-15CVE-2022-42861: This issue was addressed with improved checks. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Monterey 12.6.2, macOS Ventura 13.1, iOS 15.7.2 and…
PriorityP276high8.8CVSS 3.1
AVLACLPRLUINSCCHIHAH
ITWVulnCheck KEV
Exploited in the wild
EPSS
0.27%
18.5th percentile
This issue was addressed with improved checks. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Monterey 12.6.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2. An app may be able to break out of its sandbox.
Affected
14 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios_15.7.2_and_ipados | — | — |
| apple | ios_16.2_and_ipados | — | — |
| apple | ipados | < 15.7.2 | 15.7.2 |
| apple | ipados | >= 16.0 < 16.2 | 16.2 |
| apple | iphone_os | < 15.7.2 | 15.7.2 |
| apple | iphone_os | >= 16.0 < 16.2 | 16.2 |
| apple | macos | < 12.6.2 | 12.6.2 |
| apple | macos | — | — |
| apple | macos | >= unspecified < 13.1 | 13.1 |
| apple | macos | >= unspecified < 12.6 | 12.6 |
| apple | macos | >= unspecified < 16.2 | 16.2 |
| apple | macos | >= unspecified < 15.7 | 15.7 |
| apple | macos_monterey | — | — |
| apple | macos_ventura | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- ·The vulnerability allows sandbox escape ('An app may be able to break out of its sandbox') but no technical exploitation details, PoC code, malicious indicators, or attack-specific artifacts are disclosed in any of the source documents. No actionable IOCs can be extracted. ↗
- ·Fixed versions are: iOS 16.2, iPadOS 16.2, macOS Monterey 12.6.2, macOS Ventura 13.1, iOS 15.7.2, and iPadOS 15.7.2. Any device running earlier versions remains vulnerable. ↗
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
vulncheck8.8HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Apple
CVE-2022-42861: macOS Monterey 12.6.2
vendor_apple·2022-12-13·CVSS 8.8
CVE-2022-42861 [HIGH] CVE-2022-42861: macOS Monterey 12.6.2
Apple Security Update: About the security content of macOS Monterey 12.6.2
Product: macOS Monterey
Version: 12.6.2
CVE: CVE-2022-42861
Component: File System
Impact: An app may be able to break out of its sandbox
Description: This issue was addressed with improved checks.
Apple
CVE-2022-42861: iOS 16.2 and iPadOS 16.2
vendor_apple·2022-12-13·CVSS 8.8
CVE-2022-42861 [HIGH] CVE-2022-42861: iOS 16.2 and iPadOS 16.2
Apple Security Update: About the security content of iOS 16.2 and iPadOS 16.2
Product: iOS 16.2 and iPadOS
Version: 16.2
CVE: CVE-2022-42861
Component: Kernel
Impact: An app may be able to break out of its sandbox
Description: This issue was addressed with improved checks.
Apple
CVE-2022-42861: iOS 15.7.2 and iPadOS 15.7.2
vendor_apple·2022-12-13·CVSS 8.8
CVE-2022-42861 [HIGH] CVE-2022-42861: iOS 15.7.2 and iPadOS 15.7.2
Apple Security Update: About the security content of iOS 15.7.2 and iPadOS 15.7.2
Product: iOS 15.7.2 and iPadOS
Version: 15.7.2
CVE: CVE-2022-42861
Component: File System
Impact: An app may be able to break out of its sandbox
Description: This issue was addressed with improved checks.
Apple
CVE-2022-42861: macOS Ventura 13.1
vendor_apple·2022-12-13·CVSS 8.8
CVE-2022-42861 [HIGH] CVE-2022-42861: macOS Ventura 13.1
Apple Security Update: About the security content of macOS Ventura 13.1
Product: macOS Ventura
Version: 13.1
CVE: CVE-2022-42861
Component: Kernel
Impact: An app may be able to break out of its sandbox
Description: This issue was addressed with improved checks.
GHSA
GHSA-wrh9-jf24-cgwp: This issue was addressed with improved checks
ghsa_unreviewed·2022-12-15
CVE-2022-42861 [HIGH] CWE-284 GHSA-wrh9-jf24-cgwp: This issue was addressed with improved checks
This issue was addressed with improved checks. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Monterey 12.6.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2. An app may be able to break out of its sandbox.
VulnCheck
iOS and iPadOS, macOS Monterey, and macOS Ventura App Sandbox Bypass Vulnerability
vulncheck·2022·CVSS 8.8
CVE-2022-42861 [HIGH] iOS and iPadOS, macOS Monterey, and macOS Ventura App Sandbox Bypass Vulnerability
iOS and iPadOS, macOS Monterey, and macOS Ventura App Sandbox Bypass Vulnerability
This issue was addressed with improved checks. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Monterey 12.6.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2. An app may be able to break out of its sandbox.
Affected: Apple ipados
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://support.apple.com/kb/HT213531
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://seclists.org/fulldisclosure/2022/Dec/20http://seclists.org/fulldisclosure/2022/Dec/21http://seclists.org/fulldisclosure/2022/Dec/23http://seclists.org/fulldisclosure/2022/Dec/24https://support.apple.com/en-us/HT213530https://support.apple.com/en-us/HT213531https://support.apple.com/en-us/HT213532https://support.apple.com/en-us/HT213533http://seclists.org/fulldisclosure/2022/Dec/20http://seclists.org/fulldisclosure/2022/Dec/21http://seclists.org/fulldisclosure/2022/Dec/23http://seclists.org/fulldisclosure/2022/Dec/24https://support.apple.com/en-us/HT213530https://support.apple.com/en-us/HT213531https://support.apple.com/en-us/HT213532https://support.apple.com/en-us/HT213533
2022-12-15
Published
Exploited in the wild