Apple Macos Monterey vulnerabilities

CVE-2022-42789 [MEDIUM] CVE-2022-42789: macOS Monterey 12.6 Apple Security Update: About the security content of macOS Monterey 12.6 Product: macOS Monterey Version: 12.6 CVE: CVE-2022-42789 Component: AppleMobileFileIntegrity Impact: An app may be able to access user-sensitive data Description: An issue in code signature validation was addressed with improved checks.

CVE-2022-32883 [MEDIUM] CVE-2022-32883: macOS Monterey 12.6 Apple Security Update: About the security content of macOS Monterey 12.6 Product: macOS Monterey Version: 12.6 CVE: CVE-2022-32883 Component: Maps Impact: An app may be able to read sensitive location information Description: A logic issue was addressed with improved restrictions.

CVE-2022-0319 [MEDIUM] CVE-2022-0319: macOS Monterey 12.6 Apple Security Update: About the security content of macOS Monterey 12.6 Product: macOS Monterey Version: 12.6 CVE: CVE-2022-0319 Component: CVE-2022-0319

CVE-2022-42793 [MEDIUM] CVE-2022-42793: macOS Monterey 12.6 Apple Security Update: About the security content of macOS Monterey 12.6 Product: macOS Monterey Version: 12.6 CVE: CVE-2022-42793 Component: Security Impact: An app may be able to bypass code signing checks Description: An issue in code signature validation was addressed with improved checks.

CVE-2022-32913 [LOW] CVE-2022-32913: macOS Monterey 12.6 Apple Security Update: About the security content of macOS Monterey 12.6 Product: macOS Monterey Version: 12.6 CVE: CVE-2022-32913 Component: Image Processing Impact: A sandboxed app may be able to determine which app is currently using the camera Description: The issue was addressed with additional restrictions on the observability of app states.

CVE-2022-32894 [HIGH] CVE-2022-32894: macOS Monterey 12.5.1 Apple Security Update: About the security content of macOS Monterey 12.5.1 Product: macOS Monterey Version: 12.5.1 CVE: CVE-2022-32894 Component: Kernel Impact: An application may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited. Description: An out-of-bounds write issue was addressed with improved bounds checking.

CVE-2022-32893 [HIGH] CVE-2022-32893: macOS Monterey 12.5.1 Apple Security Update: About the security content of macOS Monterey 12.5.1 Product: macOS Monterey Version: 12.5.1 CVE: CVE-2022-32893 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. Description: An out-of-bounds write issue was addressed with improved bounds checking.

CVE-2022-32839 [CRITICAL] CVE-2022-32839: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-32839 Component: CoreText Impact: A remote user may cause an unexpected app termination or arbitrary code execution Description: The issue was addressed with improved bounds checks.

CVE-2022-32845 [CRITICAL] CVE-2022-32845: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-32845 Impact: An app may be able to execute arbitrary code with kernel privileges Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2022-32847 [CRITICAL] CVE-2022-32847: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-32847 Component: Wi-Fi Impact: A remote user may be able to cause unexpected system termination or corrupt kernel memory Description: This issue was addressed with improved checks.

CVE-2022-32788 [CRITICAL] CVE-2022-32788: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-32788 Component: AppleAVD Impact: A remote user may be able to cause kernel code execution Description: A buffer overflow was addressed with improved bounds checking.

CVE-2022-32863 [CRITICAL] CVE-2022-32863: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-32863 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: A memory corruption issue was addressed with improved state management.

CVE-2022-32810 [HIGH] CVE-2022-32810: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-32810 Impact: An app may be able to execute arbitrary code with kernel privileges Description: The issue was addressed with improved memory handling.

CVE-2022-32860 [HIGH] CVE-2022-32860: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-32860 Component: Wi-Fi Impact: An app may be able to execute arbitrary code with kernel privileges Description: An out-of-bounds write was addressed with improved input validation.

CVE-2022-32831 [HIGH] CVE-2022-32831: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-32831 Component: AppleScript Impact: Processing a maliciously crafted AppleScript binary may result in unexpected termination or disclosure of process memory Description: An out-of-bounds read issue was addressed with improved bounds checking.

CVE-2022-2294 [HIGH] CVE-2022-2294: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-2294 Component: WebRTC Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: A memory corruption issue was addressed with improved state management.

CVE-2022-32815 [HIGH] CVE-2022-32815: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-32815 Component: Kernel Impact: An app with root privileges may be able to execute arbitrary code with kernel privileges Description: The issue was addressed with improved memory handling.

CVE-2022-32885 [HIGH] CVE-2022-32885: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-32885 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: A memory corruption issue was addressed with improved validation.

CVE-2022-32797 [HIGH] CVE-2022-32797: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-32797 Component: AppleScript Impact: Processing a maliciously crafted AppleScript binary may result in unexpected termination or disclosure of process memory Description: This issue was addressed with improved checks.

CVE-2022-32910 [HIGH] CVE-2022-32910: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-32910 Component: Archive Utility Impact: An archive may be able to bypass Gatekeeper Description: A logic issue was addressed with improved checks.