Login Sign Up

CVE-2022-43454

7.8 HIGH

📋 TL;DR

A double free vulnerability in Apple operating systems allows malicious applications to execute arbitrary code with kernel privileges. This affects macOS, iOS, iPadOS, tvOS, and watchOS users running vulnerable versions. Successful exploitation gives attackers complete control over affected devices.

💻 Affected Systems

Products:
  • macOS
  • iOS
  • iPadOS
  • tvOS
  • watchOS
Versions: Versions before macOS Ventura 13.1, iOS 16.2, iPadOS 16.2, tvOS 16.2, watchOS 9.2
Operating Systems: Apple operating systems
Default Config Vulnerable: ⚠️ Yes
Notes: All default configurations are vulnerable. Requires malicious app installation.

📦 What is this software?

Ipados by Apple

View all CVEs affecting Ipados →

Iphone Os by Apple

View all CVEs affecting Iphone Os →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

Tvos by Apple

View all CVEs affecting Tvos →

Watchos by Apple

View all CVEs affecting Watchos →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete device compromise with kernel-level persistence, data theft, and ability to bypass all security controls.

🟠

Likely Case

Malicious app gains full system access, potentially installing backdoors, stealing credentials, or joining botnets.

🟢

If Mitigated

Limited impact if app sandboxing works properly, but kernel access could bypass most sandbox restrictions.

🌐 Internet-Facing: LOW
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Requires user to install malicious app. No known public exploits as of analysis.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: macOS Ventura 13.1, iOS 16.2, iPadOS 16.2, tvOS 16.2, watchOS 9.2

Vendor Advisory: https://support.apple.com/en-us/102741

Restart Required: Yes

Instructions:

1. Open Settings/System Preferences. 2. Navigate to Software Update. 3. Install available updates. 4. Restart device when prompted.

🔧 Temporary Workarounds

Restrict App Installation

all

Only install apps from trusted sources like Apple App Store

🧯 If You Can't Patch

  • Implement strict app installation policies and application allowlisting
  • Monitor for suspicious kernel activity and privilege escalation attempts

🔍 How to Verify

Check if Vulnerable:

Check current OS version against vulnerable versions listed in affected_systems

Check Version:

macOS: sw_vers -productVersion, iOS/iPadOS: Settings > General > About > Version

Verify Fix Applied:

Verify OS version matches or exceeds patched versions listed in fix_official

📡 Detection & Monitoring

Log Indicators:

  • Kernel panic logs
  • Unexpected privilege escalation
  • Suspicious kernel module loading

Network Indicators:

  • Unusual outbound connections from system processes
  • Command and control traffic

SIEM Query:

Processes with unexpected parent-child relationships involving kernel processes

📊 Metadata

CVE ID: CVE-2022-43454
CVSS v3 Score: 7.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CWE: CWE-415
EPSS Score: 0.03% exploit probability (9th percentile)
Published: March 10, 2025
Last Updated: March 24, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2022-43454, you might also want to check these:

CVE-2020-35885 9.8

This vulnerability in the alpm-rs Rust crate allows double-free memory corruption due to improper de...

Same vulnerability type (CWE-415)
CVE-2021-29940 9.8

This vulnerability in the Rust 'through' crate allows double-free memory corruption when the map fun...

Same vulnerability type (CWE-415)
CVE-2023-49937 9.8

This CVE describes a double-free vulnerability in SchedMD Slurm workload manager that allows attacke...

Same vulnerability type (CWE-415)