CVE-2022-32947

HIGH

iPadOS < 16.0 - Out-of-bounds Write

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-32947. PoCs published by hoshinolina.

AI-analyzed exploit summary This repository contains a functional exploit for CVE-2022-32947, targeting a GPU vulnerability to achieve local privilege escalation (LPE) on macOS. The exploit leverages GPU memory manipulation to gain arbitrary read/write access to physical memory, ultimately escalating privileges to root.

Description

The issue was addressed with improved memory handling. This issue is fixed in iOS 16.1 and iPadOS 16, macOS Ventura 13, watchOS 9.1. An app may be able to execute arbitrary code with kernel privileges.

Exploits (1)

nomisec WORKING POC 186 stars
by hoshinolina · poc
https://github.com/hoshinolina/agx-exploit

This repository contains a functional exploit for CVE-2022-32947, targeting a GPU vulnerability to achieve local privilege escalation (LPE) on macOS. The exploit leverages GPU memory manipulation to gain arbitrary read/write access to physical memory, ultimately escalating privileges to root.

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Complex
Reliability
Reliable
Target: macOS (specific version not specified, but likely affects macOS Monterey or earlier)
No auth needed
Prerequisites: Local access to a vulnerable macOS system · GPU access
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (3)

Core 3

Scores

CVSS v3 7.8
EPSS 0.0058
EPSS Percentile 43.5%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-787
Status published
Products (4)
apple/ipados < 16.0
apple/iphone_os < 16.1
apple/macos < 13.0
apple/watchos < 9.1
Published Nov 01, 2022
Tracked Since Feb 18, 2026