The host is installed with Apple Mac OS 12 before 12.4 and is prone to an out-of-bounds write vulnerability. A flaw is present in the application, which fails to properly handle issues in bounds checking. On successful exploitation, an attacker that has already achieved code execution in macOS Recovery may be able to escalate to kernel privileges.