Impact
A malicious application can cause unintended changes to memory that is shared between processes, a classic memory corruption flaw. Based on the description, it is inferred that such corruption could alter the state of cooperating processes, leading to data corruption, privilege escalation, or even arbitrary code execution if a process depends on the corrupted data.
Affected Systems
The flaw affects Apple macOS Monterey prior to version 12.4. The vulnerability is addressed in macOS Monterey 12.4, so any installation of Monterey 12.0-12.3 is potentially vulnerable.
Risk and Exploitability
The CVSS score of 7.1 indicates high severity, and since the EPSS score is not available and the vulnerability is not listed in CISA KEV, the known exploitation probability remains unclear. An attacker with the ability to run a malicious application on a system could exploit this flaw locally, potentially gaining control over the affected processes. With no public exploit actively in use and without a KEV designation, the risk is considered moderate, but the severe impact of memory corruption warrants prompt remediation.
OpenCVE Enrichment