cve/2022/CVE-2022-42841.md

CVE-2022-42841

Description

A type confusion issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.6.2, macOS Ventura 13.1, macOS Big Sur 11.7.2. Processing a maliciously crafted package may lead to arbitrary code execution.

POC

Reference

• http://seclists.org/fulldisclosure/2022/Dec/23
• http://seclists.org/fulldisclosure/2022/Dec/24
• http://seclists.org/fulldisclosure/2022/Dec/25

Github

• https://github.com/ARPSyndicate/cvemon
• https://github.com/houjingyi233/macOS-iOS-system-security