image credit: Pexels

PoC Code Published for High-Severity macOS Sandbox Escape Vulnerability

November 21, 2022

Tracked as CVE-2022-26696 (CVSS score of 7.8), the security defect was identified and reported last year, with a patch available since the release of macOS Monterey 12.4 in May.

In its advisory, Apple notes that the flaw allowed a sandboxed process to circumvent sandbox restrictions, and that improved environment sanitization resolved the issue.

Successful exploitation of the vulnerability would require for the attacker to be able to execute low-privileged code on the target system.

Read More on Security Week