CVE-2022-48578

HIGH

macOS < 12.5 - Out-of-bounds Read via AppleScript Processing

Title source: llm

Description

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Monterey 12.5. Processing an AppleScript may result in unexpected termination or disclosure of process memory.

References (1)

Core 1

Core References

Vendor Advisory

https://support.apple.com/en-us/HT213345

Scores

CVSS v3 7.1

EPSS 0.0017

EPSS Percentile 6.5%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-125

Status published

Products (1)

apple/macos < 12.5

Published Jun 10, 2024

Tracked Since Feb 18, 2026