CVE-2022-22639

HIGH

iPadOS < 15.4 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-22639. PoCs published by jhftss.

AI-analyzed exploit summary This repository provides a compiled exploit for CVE-2022-22639, a macOS privilege escalation vulnerability in the SUHelper tool. The exploit requires compiling a custom binary and using a pre-extracted InstallAssistant.gz file to achieve root privileges.

Description

A logic issue was addressed with improved state management. This issue is fixed in iOS 15.4 and iPadOS 15.4, macOS Monterey 12.3. An application may be able to gain elevated privileges.

Exploits (1)

nomisec WORKING POC 122 stars
by jhftss · poc
https://github.com/jhftss/CVE-2022-22639

This repository provides a compiled exploit for CVE-2022-22639, a macOS privilege escalation vulnerability in the SUHelper tool. The exploit requires compiling a custom binary and using a pre-extracted InstallAssistant.gz file to achieve root privileges.

Classification
Working Poc 90%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: macOS SUHelper (versions prior to fix for CVE-2022-22639)
No auth needed
Prerequisites: macOS system with vulnerable SUHelper · Xcode for compilation · InstallAssistant.gz file
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT213182
Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT213183

Scores

CVSS v3 7.8
EPSS 0.0807
EPSS Percentile 94.1%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

Status published
Products (3)
apple/ipados < 15.4
apple/iphone_os < 15.4
apple/macos < 12.3
Published Mar 18, 2022
Tracked Since Feb 18, 2026